CREDENTIAL STUFFING

👀 Look at this password list of Bob

🔻 AMAZON 

Password - @A12345

🔻 INSTAGRAM 

Password - @A12345

🔻TWITTER 

Password - @A12345

🤔 Do you also use the same password for all the applications you use?

⚠️ Not just you, more than 65% of people reuse the same password on all their sites.

😯 Do you know that it makes your device vulnerable to a Credential Stuffing attack?

❓What is Credential Stuffing?

🔐 Credential stuffing is a type of cyberattack that gains unauthorized access to user accounts through large-scale automated login requests.  

👤 Hackers derive the data ( usernames, passwords, emails, etc.) from a breach or purchases from the dark web. 

💡  Then they use these credentials to gain access to other websites. 

🔁  One of the main reasons this kind of attack is more successful is because people reuse the same login credentials for multiple services.

😟 This means that all our private data and information is going to be at stake.

😰 Scary, right?

😀 Here are a few preventive means to avoid getting hacked by credential stuffing:

 🔺 Using unique passwords for each of your accounts

🔺 Multi-factor authentication(Secondary Passwords, OTP, Biometrics, PINs)

🔺 CAPTCHA

🔺 Breached password protection

🔺 Multi-step login process