{"id":5116,"date":"2020-10-08T16:26:13","date_gmt":"2020-10-08T20:26:13","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=5116"},"modified":"2020-10-08T16:26:13","modified_gmt":"2020-10-08T20:26:13","slug":"credential-stuffing-attacks-on-the-rise-what-can-you-do","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/","title":{"rendered":"Credential Stuffing Attacks on the Rise. What Can You Do?"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-2734\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg\" alt=\"Credential Stuffing Attacks on the Rise. What Can You Do? \" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg 800w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod-300x150.jpg 300w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod-768x384.jpg 768w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod-540x270.jpg 540w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod-162x81.jpg 162w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">In a recent <\/span><a href=\"https:\/\/assets.documentcloud.org\/documents\/7208239\/FBI-PIN-on-credential-stuffing-attacks.pdf\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400\">Private Industry Notification<\/span><\/a><span style=\"font-weight: 400\">, the U.S. Federal Bureau of Investigation warned of a rise in credential stuffing attacks on businesses. More specifically, it warned that credentials stuffing attacks \u201caccounted for the greatest volume of security incidents against the <\/span><span style=\"font-weight: 400\">financial sector\u201d at 41 percent.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><div class=\"box box3\">ALERT: Cyber threats don&#8217;t rest, even during global pandemics. You can learn more with the Solutions Review <a href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-identity-and-access-management-software-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener noreferrer\">Identity Management Buyer&#8217;s Guide<\/a> and our other resources.\u00a0<\/div><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Moreover, the FBI warned that the consequences of credential stuffing attacks could prove disastrous; financial businesses could suffer downtime, loss of customers, and reputational damage, in addition to costs reaching as much as $6 million per year.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">However, these problems don\u2019t just affect financial businesses. An <\/span><a href=\"https:\/\/www.infosecurity-magazine.com\/blogs\/credential-stuffing-recent-attacks\/\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400\">article in InfoSecurity Magazine<\/span><\/a><span style=\"font-weight: 400\"> by Karen Bowen attributed some of the largest hackers of the past year to credential stuffing; these include the Marriott Breach, the Zoom breach, and the attack on GoDaddy.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Both Bowen and the FBI note that frequent exposure of credentials stems from a few different sources. Hackers constantly upload stolen or leaked credentials to the Dark Web, which makes it easier for hackers to perform future credential attacks. Yet users also contribute to this problem by refusing to use unique passwords for all of their accounts.\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Preventing Repeating Passwords to Stop Credential Stuffing Attacks<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Every repeated password exponentially increases the risk of hackers stealing it and using it in future credential stuffing ploys. In fact, repeated passwords could create a cascading data breach effect, where breach follows breach as more passwords become exposed.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Fortunately, there are a few steps enterprises can take to mitigate or completely prevent credential stuffing. First, you could use a business-level <a href=\"https:\/\/solutionsreview.com\/endpoint-security\/18-best-password-managers-for-users-and-businesses\/\" target=\"_blank\" rel=\"noopener noreferrer\">password manager<\/a> to encourage users to generate strong passwords without fearing forgetting or losing them.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Alternatively, you could embrace different methods of authentication as embodied by multifactor authentication. Credential stuffing doesn\u2019t work (or at least doesn\u2019t work as well) if biometrics, geofencing, and token-detection all play a part in authentication processes.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">You can learn more in our Identity Management Buyer\u2019s Guide.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><br \/>Widget not in any sidebars<br \/>\u00a0\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In a recent Private Industry Notification, the U.S. Federal Bureau of Investigation warned of a rise in credential stuffing attacks on businesses. More specifically, it warned that credentials stuffing attacks \u201caccounted for the greatest volume of security incidents against the financial sector\u201d at 41 percent.\u00a0 Moreover, the FBI warned that the consequences of credential stuffing [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":2734,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[6,1],"tags":[142,125,1212,1561,16,76,425,145,91],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Credential Stuffing Attacks on the Rise. What Can You Do?<\/title>\n<meta name=\"description\" content=\"In a recent Private Industry Notification, the U.S. Federal Bureau of Investigation warned of a rise in credential stuffing attacks on businesses.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/\",\"name\":\"Credential Stuffing Attacks on the Rise. What Can You Do?\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg\",\"datePublished\":\"2020-10-08T20:26:13+00:00\",\"dateModified\":\"2020-10-08T20:26:13+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"In a recent Private Industry Notification, the U.S. Federal Bureau of Investigation warned of a rise in credential stuffing attacks on businesses.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg\",\"width\":800,\"height\":400,\"caption\":\"How to Prevent Account Takeovers in Your Business\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Credential Stuffing Attacks on the Rise. What Can You Do?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Credential Stuffing Attacks on the Rise. What Can You Do?","description":"In a recent Private Industry Notification, the U.S. Federal Bureau of Investigation warned of a rise in credential stuffing attacks on businesses.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/","url":"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/","name":"Credential Stuffing Attacks on the Rise. What Can You Do?","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg","datePublished":"2020-10-08T20:26:13+00:00","dateModified":"2020-10-08T20:26:13+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"In a recent Private Industry Notification, the U.S. Federal Bureau of Investigation warned of a rise in credential stuffing attacks on businesses.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg","width":800,"height":400,"caption":"How to Prevent Account Takeovers in Your Business"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/credential-stuffing-attacks-on-the-rise-what-can-you-do\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"Credential Stuffing Attacks on the Rise. What Can You Do?"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/5116"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=5116"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/5116\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/2734"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=5116"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=5116"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=5116"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}