New data uncovers 300% increase in post-breach account takeover attempts

The study finds 39% of volumetric ATO attacks occur on a Friday or Saturday.

May 2, 2018 by Roy Urrico, CU Times

Once data breaches take on a public life, websites experience a 300% increase in volumetric credential stuffing attacks, many aimed at financial authentications, with the weekends showing the greatest susceptibility.

That is among the revelations from San Francisco-based bot mitigation firm Distil’s “The Anatomy of Account Takeover Attacks,” based on data from 600 domains that include login pages. The findings come from the recently launched Distil Research Lab, a team of dedicated analysts who examine the most sophisticated automated threats for some of the world’s most attacked websites.

Hackers and fraudsters use bots to execute ATO attacks for a variety of purposes. They can validate login credentials, gain access to credit card data, and sell personally identifiable information on the darknet. They can also use stolen account data to transfer money, purchase goods, or spread political agendas.

New data uncovers 300% increase in post-breach account takeover attempts

The study finds 39% of volumetric ATO attacks occur on a Friday or Saturday.

Featured

3 terrible reasons for not teaching financial education in school

Five ways financial education drives brand awareness

Credit unions + financial education = brighter futures

Ways to lower your tax burden tomorrow (and the day after)

Stay connected to the credit union community with our free newsletter!

You have Successfully Subscribed!