Collaborate Disseminate
Recently, the Securities and Exchange Commission’s exam division issued a Risk Alert (the “Alert”) where it carried out several targeted cybersecurity investigations. The agency is now concerned with how there’s been an increase in a specific type of h… Continue reading SEC’s Office of Compliance Inspection and Examinations Warns of a Sudden Increase in Credential Stuffing Hack
An undisclosed number of customers of outdoor clothing retailer The North Face have had their passwords reset by the company, following a credential-stuffing attack.
The company has revealed that on October 9, 2020, it became aware that hackers had … Continue reading The North Face resets passwords after credential-stuffing attack
An undisclosed number of customers of outdoor clothing retailer The North Face have had their passwords reset by the company, following a credential-stuffing attack. The company has revealed that on October 9, 2020, it became aware that hackers had use… Continue reading The North Face resets passwords after credential-stuffing attack
Multiple chicken diners said their usernames and passwords were stolen and the accounts used to place high-volume orders. Continue reading Nando’s Hackers Feast on Customer Accounts
Google is rolling out 35 security fixes, and a new password feature, in Chrome 86 versions for Windows, Mac, Android and iOS users. Continue reading Google’s Chrome 86: Critical Payments Bug, Password Checker Among Security Notables
Despite repeated warnings Dunkin’ Donuts failed to investigate evidence of a significant data breach, didn’t reset passwords, and didn’t warn customers… for years. Continue reading The Dunkin’ Donuts data breach leaves a very bad taste in the mouth
Thousands of Canadian citizens are at risk of identity fraud after cybercriminals used stolen credentials to access government services including COVID-19 relief funds. The source of the breach was a credential stuffing attack utilizing logins exposed … Continue reading The Skinny on Password Attacks
Thousands of stolen Fortnite accounts are selling like hotcakes in underground marketplaces, amassing around $1.2 million a year for cybercriminals, a new report shows. The Fortnite Underground Cybercrime Economy report sheds light on a million-dollar … Continue reading Cybercriminals Make Millions Selling Stolen Fortnite Accounts, New Research Shows
The Canada Revenue Agency (CRA) suspended online services after accounts were hit in a third wave of credential stuffing attacks this weekend – giving bad actors access to various government services. Continue reading Cyberattacks Hit Thousands of Canadian Tax, Benefit Accounts
Malicious actors launched credential stuffing attacks that targeted Canada’s GCKey service and Canada Revenue Agency (CRA) accounts. On August 15, the Treasury Board of Canada Secretariat announced that the Government of Canada was in the process of re… Continue reading Credential Stuffing Attacks Targeted GCKey, CRA Accounts