credential stuffing
termsecurity
Automated login attempts using username and password pairs stolen from other breaches.
Because people reuse passwords, a set leaked from one site is tried en masse against many others. It is not guessing; it is replaying known-good pairs, which is why unique passwords and multi-factor authentication defeat it.
Also known as: credential-stuffing, cred stuffing