Does your login form rate limit requests, or does it let an attacker make as many as they want? 🔓
You need rate limiting to slow down and hinder brute-force and credential stuffing attacks!
https://securinglaravel.com/p/security-tip-rate-limited-logins#Laravel#PHP