One of the best methods to prevent brute force attacks from succeeding is to have strong passwords implemented across all systems. Creating passwords that are 20+ characters in length, with a random mix of uppercase and lowercase characters, special characters, and numbers is an efficient way to prevent a brute force attack from allowing a malicious user to gain access to a system. Limiting login attempts is another way to prevent brute force attacks from succeeding. Brute force attacks require trying a large set of credentials against a system, so rate limiting how many attempts can occur will help slow down the attacks to the point where they are no longer feasible to attempt. Enabling multi-factor authentication can also help prevent unauthorized access to a system, should one of the credentials attempted succeed. MFA is an excellent asset to use to prevent brute force and other types of password compromises from allowing a threat actor access to a system. Finally, using forms of password less authentication where possible can help prevent these attacks from succeeding. Switching to methods like public key or biometric authentication for granting access to systems can help remove the risk of password-based attacks altogether.
https://thehackernews.com/2023/03/gobruteforcer-new-golang-based-malware.html
https://unit42.paloaltonetworks.com/gobruteforcer-golang-botnet/
