From Exposure to Takeover: The 15 billion stolen credentials allowing account takeover

July 7, 2020

The average person uses some 191 services that require them to enter passwords or other credentials. That’s a lot to keep on top of, and it presents a huge problem if compromise occurs, particularly if a person uses the same credentials across multiple services. Over the past 2.5 years, the Digital Shadows Photon Research team has been analyzing how cybercriminals conspire to prey upon users of online services by “taking over” the accounts they all use on an everyday basis―for banks, to stream videos or music, for work―the list goes on.

For this paper we closely examine this ubiquitous problem, including how attackers approach account takeovers (ATO). Using the Digital Shadows SearchLightTM service, which maintains a database of breached credentials and scours criminal forums for attackers’ trends, data dumps, advertisements and tools.

For more, check out our blog on the topic here: https://digitalshadows.com/blog-and-research/from-exposure-to-takeover-part-1-beg-borrow-and-steal-your-way-in/

Watch our on-demand webinar on the topic here: https://resources.digitalshadows.com/webinars/account-takeover-webinar

 

 

 

 

Previous Report
15 Milliarden Zugangsdaten frei im Netz zugänglich
15 Milliarden Zugangsdaten frei im Netz zugänglich

Zahl der exponierten Benutzer-Passwort-Kombinationen hat sich in den letzten zwei Jahren verdreifacht

Next Report
Digital Shadows SearchLightTM
Digital Shadows SearchLightTM