Hackers use brute-force attacks since it is an uncomplicated technique to break passwords or get into systems without permission.  By systematically trying various combinations of usernames and passwords, attackers can exploit weak credentials. Brute-force attacks are automated and scalable, enabling hackers to compromise multiple accounts or systems in a relatively short time.

Source: GBHackers