The Evolving Threat of Credential Stuffing

Imagine installing a fancy deadbolt lock with a state-of-the-art alarm system for your front door but leaving the back door wide open. No one would do that, right? Yet many companies make a similar mistake with their cybersecurity defenses. They put Fort Knox-like security on the front end of their apps and websites while leaving their back-end critical APIs exposed to the world.

Gartner predicts that by 2022, API abuses will become the most common attack vector resulting in data breaches. “Despite growing awareness of API security, breaches continue to occur,” the analyst firm says. When one adds up the total number of breached records over the past few years, more than 50% are exfiltrated via applications and APIs.

How One AI-Driven Media Platform Cut EBS Costs for AWS ASGs by 48%

How One AI-Driven Media Platform Cut EBS Costs for AWS ASGs by 48%

It used to be that hackers’ preferred method to gain access to online accounts was through user-facing login pages in an account takeover method called credential stuffing. Credential stuffing takes advantage of a common weak point: the tendency of many users to reuse passwords. This makes it easier for an attacker to leverage a list of usernames and passwords stolen from one account and, in a damaging ripple effect, run them against many services.

Read more: Dark Reading

Latest Articles

Why C-Suite Executives Are Switching from VPNs to ZTNA

Hybrid workforces and cloud-first strategies have exposed the cracks in VPNs. Designed for simpler times, these legacy tools now create more problems than they solve. They slow your team down, leave security gaps, and make scaling a headache. How do you secure remote access without these hurdles? The answer is Zero Trust Network Access (ZTNA). […]

29th April, 2025
Weak Defences: The Most Hackable Sports Passwords

We get it. Thinking of another password that you haven’t used before can be frustrating – especially when we have to change or update our passwords so regularly. But while it might be tempting to use your favourite sports teams and clubs as passwords, it’s a risky move for your cyber security.  Using unique passwords […]

7th April, 2025
Solving Network Security Issues for Rapidly Growing Global Businesses

Introduction Ryohin Keikaku is a global manufacturing and retail company that handles everything from product planning to sales for products known as “Mujirushi-Ryohin” in Japan and “MUJI” overseas. To keep pace with its rapid expansion—adding 100 new stores annually in Japan—and its growing global presence, now spanning 225 locations across 20 countries, including 50 stores […]

3rd April, 2025

Unlock Your Cloud Potential

Schedule a call with our experts. Discover new technology and get recommendations to improve your performance.

    GlobalDots' industry expertise proactively addressed structural inefficiencies that would have otherwise hindered our success. Their laser focus is why I would recommend them as a partner to other companies

    Marco Kaiser
    Marco Kaiser

    CTO

    Legal Services

    GlobalDots has helped us to scale up our innovative capabilities, and in significantly improving our service provided to our clients

    Antonio Ostuni
    Antonio Ostuni

    CIO

    IT Services

    It's common for 3rd parties to work with a limited number of vendors - GlobalDots and its multi-vendor approach is different. Thanks to GlobalDots vendors umbrella, the hybrid-cloud migration was exceedingly smooth

    Motti Shpirer
    Motti Shpirer

    VP of Infrastructure & Technology

    Advertising Services