Advertisement
Dashlane Brute-Force Attack: Safeguarding Encrypted Password Vaults
Dashlane reports a brute-force attack resulting in the download of encrypted user vaults. Learn about the impact and remediation steps for this identity threat.
California Sues 23andMe for Failing to Protect User Genetic Data
California Attorney General files lawsuit against 23andMe (Chrome Holding Co.) for security failures leading to the massive 2023 credential stuffing breach.
Ukraine Identifies Odesa-Based Infostealer Operator
Ukrainian cyberpolice and US law enforcement identify an 18-year-old in Odesa suspected of compromising 28,000 accounts for dark web monetization.
Defending Against Identity-Based Attacks and Stolen Credentials
Identity-based attacks use stolen credentials to bypass security. Learn why these attacks are the primary entry point and how to mitigate the risk.
DraftKings Hacker Sentenced: Lessons in Credential Stuffing Defense
Analysis of the sentencing of Kamerin Stokes following the 2022 DraftKings breach, detailing credential stuffing TTPs and account takeover prevention strategies.
Honeypot Data Analysis: Predictable Year and Season Password Patterns
SANS ISC research reveals how attackers exploit predictable password patterns, such as years and seasons, driven by outdated rotation policies.
Managing Recurring Credential Incident Risks in Enterprise Environments
Analyze the financial and operational impact of recurring credential incidents, beyond the $4.4 million average breach cost cited in recent industry reports.
Defeating Industrialized Fraud: Identifying Standardized Attack Patterns
Analysis of the industrialized fraud ecosystem and how standardized attack infrastructure allows financial institutions to detect patterns before losses occur.
Starbucks Data Breach: Unauthorized Access to Partner Central Accounts
Starbucks discloses a data breach affecting hundreds of employees, exposing SSNs and financial details via compromised Partner Central accounts in May 2024.
Loblaw Data Breach: Analyzing the PC Optimum Account Resets
Canadian retail giant Loblaw notifies customers of a security breach affecting PC Optimum accounts, prompting a mandatory session reset for all users.