BUSINESS GUIDE FOR CREDENTIAL STUFFING ATTACKS
Credential stuffing is a type of cyberattack that typically involves reported attempts to log in to online accounts using usernames and passwords stolen from other online services. It stems from a tendency of individuals to reuse the same credentials on multiple online accounts.
It is estimated there are more than 15 billion stolen credentials circulating on the Internet.
The New York State Attorney General compiled login credentials for customer accounts at 17 well-known companies and discovered more than 1.1 million accounts that appear to have been compromised in credential stuffing attacks.
The Attorney General issued a Business Guide for Credential Stuffing Attacks that may be of interest to members.