What is Credential Stuffing?
Credential Stuffing is a type of cyber attack in which bad actors deploy an automated injection of either actual stolen username/password pairs or random possibilities, until one such combo works to access a user account. Like other credential threats, these attacks often have the goal of gaining deeper access into a user’s organization, though in some cases, hackers may simply steal credit card or financial information.
How to Recognize This Threat: Credential Stuffing is another form of a brute force attack, which means admins can recognize it by traffic volume. Online users can keep tabs on whether their credentials have been part of a breach to know whether they are especially vulnerable to this form of compromise.
How to Prevent This Threat: Captcha technology and rules that limit the number of login attempts, as well as multifactor authentication are methods administrators can use to prevent credential stuffing against their users. On the user side, choosing to enable MFA when it is an option should prevent unauthorized access even if the username/password combination hits. If an individual’s credentials have been part of a known breach, that user should immediately update their passwords. Another tip is to avoid using the same username/password combination on multiple accounts, as that makes unauthorized access more likely.