News October 7, 2024

CISA warns about credential access in FY23 risk & vulnerability assessment

3 min read - CISA released its Fiscal Year 2023 (FY23) Risk and Vulnerability Assessments (RVA) Analysis, providing a crucial look into the tactics and techniques threat actors employed to compromise critical infrastructure. The report is part of the agency’s ongoing effort to improve…

Data Protection January 25, 2021

Credential Stuffing: AI’s Role in Slaying a Hydra

2 min read - One data breach can lead to another. Because so much of the data stolen in breaches ends up for sale on the dark web, a threat actor can purchase authentication credentials — the emails and passwords — of the organization’s…

January 19, 2017

Credential-Stuffing Schemes Rely on Recycled Login Information

2 min read - Credential-stuffing schemes rely on the widespread, irresponsible practice of using the same login credentials to access multiples accounts.

Advanced Threats August 5, 2015

Attacker Demands $15,000 Ransom for Stolen Customer Credentials

2 min read - A cybercriminal going by the name DetoxRansome claims to have stolen user credentials from Bitdefender and is now holding the information for ransom.

June 26, 2015

Researchers Develop Hacking Gear Small Enough to Fit Inside a Pita Sandwich

2 min read - You can pack a lot into the average pita — including enough high-tech equipment to eavesdrop and steal data from nearby laptops, researchers have shown.

Endpoint February 28, 2015

Could Your SSH Keys Become Stolen Credentials?

3 min read - SSH keys are valuable to cybercriminals because stolen credentials can be used to access critical servers. Here are some facts regarding the issue.

November 13, 2014

Stolen Vendor Credentials: Retail’s Real Problem?

3 min read - Stolen vendor credentials are to blame for the recent Home Depot breach, giving attackers the access they needed to get into high-level systems.