![]() Javvad Malik, Security Awareness Advocate at KnowBe4, told SiliconANGLE, “Credentials are a particular area in which users are left exposed because they either choose weak passwords, or reuse them across different sites. The unencrypted database was discovered as part of a ‘huge web mapping project’ - wherein researchers examine and test IP blocks for system weaknesses through port scanning. I know my playlists are □ but like who tries to hack Spotify? □□ I got an email that someone was trying to hack into my Spotify account. ![]() Security researchers say fraudsters targeting Spotify users could have possibly used the same login credentials to hack into Spotify accounts that reused old passwords. The database includes information such as email addresses, login credentials (usernames and passwords) of 300,000 to 350,000 users whose credentials were either obtained “illegally or potentially leaked from other sources that were repurposed for credential stuffing attacks against Spotify.”Įarlier on July 3, Spotify users reported experiencing erratic functioning - preferences were changed, and the app recommended unrelated playlists to the users. The security researchers also found 72-gigabyte of information related to Spotify users in the unsecured database. This database is not maintained by Spotify and was set up by hackers looking to defraud Spotify users via brute-force credential stuffing attacks. Recently, vpnMentor’s research team found an unsecured Elasticsearch database containing over 380 million records, including login credentials and other user data being validated against the Spotify service. ![]() Worryingly, organizations continue to risk user data by failing to enforce security safeguards to mitigate the risk of unauthorized access to their systems. Between December 2017 and November 2019, content delivery network services provider Akamai observed an astounding 85 billion credential stuffing attacks against its customer base. ![]() In a digital-only world, there has been an explosion of credential theft. VpnMentor security researchers found a 72-gigabyte unencrypted database containing data records of over 300K Spotify users who were targeted in credential stuffing attacks. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |