Credential stuffing
Credential stuffing is an attack where username and password pairs stolen in one breach are tried automatically against many other sites. It works because people reuse the same password across services. A unique password for every site, stored in a password manager, defeats it.