Credential stuffing – Page 5

Canada Revenue Agency Discloses Credential Stuffing Attack on 5,500 Service Accounts

Posted on August 17, 2020 by Alina Bizga

A credential stuffing attack targeting Canada Revenue Agency (CRA) accounts has forced the government tax collector to suspend its online services over the weekend. The compromised accounts were linked to the GCKey portal, a system used by 30 federal d… Continue reading Canada Revenue Agency Discloses Credential Stuffing Attack on 5,500 Service Accounts→

Are Businesses Unprepared to Fight Bot Attacks?

Posted on July 24, 2020 by Joan Goodchild

Businesses know bots present a big threat to their security and sensitive data. But they’re not doing nearly enough to mitigate the problem, according to new research from Netacea, which looked at data across the travel, entertainment, e-commerce and … Continue reading Are Businesses Unprepared to Fight Bot Attacks?→

F5 BIG-IP Exploit, WiFi Router Security Updates, Password Reuse

Posted on July 13, 2020 by Tom Eston

In episode 129 for July 13th 2020: Impact of the F5-BIG-IP critical vulnerability, security updates and your WiFi router, and details about new research that shows how billions of compromised credentials are available in the cyber underground. ** Links… Continue reading F5 BIG-IP Exploit, WiFi Router Security Updates, Password Reuse→

133m records for sale as fruits of data breach spree keep raining down

Posted on July 2, 2020 by Lisa Vaas

Databases can be had for as little as $100, on up to $1,100. Most, if not all, are being sold by the hacking group Shiny Hunters. Continue reading 133m records for sale as fruits of data breach spree keep raining down→

Zoom Hacked Accounts, North Korean Hackers, Facebook Senior Pictures

Posted on April 20, 2020 by Tom Eston

In episode 117 for April 20th 2020: More problems for Zoom with tens of thousands of compromised credentials and zero-day exploits, the $5 million dollar reward for information on North Korean hackers, and why it might not be the best idea to post your… Continue reading Zoom Hacked Accounts, North Korean Hackers, Facebook Senior Pictures→

Zoom passwords for sale on the Dark Web – “ten-a-penny” by all accounts

Posted on April 15, 2020 by Paul Ducklin

If you reuse an old password when you’re rushing to create a new account for the lockdown era, you’re as good as “pre-hacking” yourself. Continue reading Zoom passwords for sale on the Dark Web – “ten-a-penny” by all accounts→

Compromised Zoom Credentials Swapped in Underground Forums

Posted on April 10, 2020 by Lindsey O'Donnell

Thousands of compromised Zoom credentials were discovered in underground forums as cybercriminals look to tap into the burgeoning remote workforce. Continue reading Compromised Zoom Credentials Swapped in Underground Forums→

Akamai Talks Massive Uptick in Credential-Stuffing Attacks Against Bank APIs

Posted on March 12, 2020 by Lindsey O'Donnell

Researchers with Akamai say that 75 percent of all credential abuse attacks against the financial services industry were targeting APIs. Continue reading Akamai Talks Massive Uptick in Credential-Stuffing Attacks Against Bank APIs→

Data breach: U.S. retailer J.Crew reveals 2019 security incident to customers

Posted on March 6, 2020 by Alina Bizga

J.Crew suffered a credential stuffing attack that may have compromised the personal data of customers, the U.S. clothing retailer disclosed earlier this week. Fraudulent activity was apparently noticed last spring, but the firm did not reveal the numbe… Continue reading Data breach: U.S. retailer J.Crew reveals 2019 security incident to customers→

Boots suspends loyalty card payments after hackers try to compromise accounts

Posted on March 6, 2020 by Graham Cluley

Hot on the heels of Tesco warning that hackers had attempted to access the accounts of Clubcard users, another UK high street retailer has warned that it has similarly been attacked.
Continue reading Boots suspends loyalty card payments after hackers try to compromise accounts→