Black Hat Stolen Credentials Have Turned SaaS Apps Into Attackers’ Playgrounds SaaS app log analysis highlights the rapid smash and grab raid: in, steal, and leave in 30 minutes. Kevin TownsendAugust 8, 2024
Data Breaches Amtrak Says Guest Rewards Accounts Hacked in Credential Stuffing Attacks National passenger railroad company Amtrak is notifying customers that hackers have breached their Guest Rewards Accounts. Ionut ArghireJune 19, 2024
Malware & Threats Okta Warns of Credential Stuffing Attacks Targeting Cross-Origin Authentication Okta raises the alarm on credential stuffing attacks targeting endpoints used for cross-origin authentication. Ionut ArghireMay 30, 2024
Identity & Access Okta Warns of Credential Stuffing Attacks Using Tor, Residential Proxies Okta warned of a spike in credential stuffing attacks using anonymizing services. Ionut ArghireApril 29, 2024
Cybercrime DraftKings Hacker Sentenced to 18 Months in Prison Joseph Garrison has received an 18-month prison sentence for accessing 60,000 DraftKings user accounts using credential stuffing. Ionut ArghireFebruary 2, 2024
Cybercrime Two More Individuals Charged for DraftKings Hacking Nathan Austad and Kamerin Stokes have been charged for hacking user accounts at fantasy sports and betting website DraftKings. Ionut ArghireJanuary 31, 2024
Cybercrime US Teen Pleads Guilty to Credential Stuffing Attack on Fantasy Sports Website Wisconsin teenager Joseph Garrison has admitted in court to launching a credential stuffing attack on a betting website. Ionut ArghireNovember 17, 2023
Application Security PayPal Warns Users of Credential Stuffing Attacks PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign. Ionut ArghireJanuary 20, 2023