Credential stuffing is a type of cyberattack in which malicious actors use leaked usernames and passwords to log in to accounts and services other than the one that was leaked. The success of these attacks relies on the habit of reusing the same password for different accounts or services. Therefore, if a password is leaked, attackers only need to try it on other sites where the user already has an account, since if there is a match, they gain access without needing to breach the system. ESET, a leading company in proactive threat detection, analyzes what a credential stuffing attack looks like, why they’re so effective, what their consequences can be, and how to avoid them.

“Repeating passwords is like using the same key to open your house, car, office, and safe. Paying attention and managing passwords properly is as important as locking your front door. Simple habits can make a difference: avoiding password reuse, enabling two-factor authentication, and using a secure password manager are practices we need to incorporate to stay protected against this type of threat and many others,” says Camilo Gutiérrez Amaya, Head of the ESET Latin America Research Lab.

The start of a credential stuffing attack is when a cybercriminal obtains leaked credentials. These are triggered by data breaches from important and well-known companies and organizations, and involve the exposure of millions of data points.

With this sensitive information available, and using bots or automated scripts, these passwords are tested on various sites, accounts, or services (such as Netflix, Gmail, banks, social networks, among others). Thousands of logins are tested per minute.

If a match is found, the accounts are logged in. This login would be identical to that of the legitimate user, making it difficult to detect, as there is no suspicious activity, such as repeated failed attempts.

To better understand the impact of these attacks, ESET reviews two specific cases that show how credential stuffing can compromise thousands of accounts

• PayPal case: Between December 6 and 8, 2022, PayPal suffered a credential stuffing attack that compromised nearly 35,000 accounts, exposing sensitive information such as names, addresses, dates of birth, and tax identification numbers.
• Snowflake: More than 165 organizations were affected when attackers accessed Snowflake utilizando credenciales robadas mediante malware tipo infostealer. Although Snowflake’s infrastructure was not directly compromised, attackers took advantage of the lack of multi-factor authentication and the use of old passwords.

“Large data breaches are the primary way cybercriminals obtain these credentials, and they are occurring more frequently than expected,” adds the ESET specialist.

In June 2025, another example was a series of databases totaling 16 billion records that were hosted in misconfigured repositories that were left exposed and public. Although the exposure was temporary, it was enough for researchers, or anyone else, to access the data, which included username and password combinations for online services such as Google, Facebook, Meta, Apple, and other accounts.

But it wasn’t the only one of the year: in May, security researcher Jeremiah Fowler revealed the public exposure of 184 million login credentials for users’ accounts around the world. This included information from various email server providers, Apple products, Google, Facebook, Instagram, Snapchat, and Roblox, to name just the most well-known. Not only that: the records included credentials from banks and other financial institutions, healthcare platforms, and government portals from several countries.

To avoid a credential stuffing attack, ESET recommends several actions

1. Essential: Do not reuse the same password across different accounts, platforms, and services.
2. Have strong, secure, and unique passwords for each account. For this purpose, a password manager is very useful. This tool is designed to store login credentials and protect them through encryption, and also includes a dedicated feature for generating complex and strong passwords.
3. Enable doble factor de autenticación on as many accounts and services as possible. This second factor is key if a password falls into the wrong hands, as a cyberattacker won’t be able to access the accounts without it.
4. Check if passwords or login credentials have already been leaked in a data breach, and change them immediately. For example, visit the website haveibeenpwned.com.

ESET invites you to learn more about computer security by visiting: https://www.welivesecurity.com/es/.

For other useful preventive information, it is also available in Venezuela: https://www.eset.com/ve/, and its social media channels @eset_ve. Also available on Instagram (@esetla) and Facebook (ESET).

With information and main image provided by ESET and Comstat Rowland

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on X/Twitter and Instagram

La entrada Credential stuffing: the risk of repeating passwords and how to protect yourself apareció primero en Bitfinance.

Losses caused to various crypto platforms, such as Penpie, Indotax, and BingX, through hacks and exploits during the month of September exceeded $120 million.

In September, various high-profile attacks were carried out on various cryptocurrency platforms, with devastating effects. “The hardest hit was against BingX, a Singapore-based exchange, which lost around $44 million in a single incident, placing itself as the most affected platform in September. This attack highlights previous vulnerabilities in their security infrastructure and represents a considerable portion of the $409 million stolen by hackers in the third quarter of 2024.”

In the case of Penpie, a decentralized finance (DeFi) protocol, the losses were quantified at $27 million. Then there is Indotax, one of the largest cryptocurrency exchanges in Indonesia, with the theft of $21 million.

The trend in the increase of attacks on crypto platforms in the Asian region worries the different exchanges due to the vulnerability that makes them a “common target for hackers who exploit security gaps in these rapidly growing markets.”

Other major incidents were recorded during September 2024, including the one perpetrated on DeltaPrime, with losses of almost $6 million; Truflation, “which reported a theft of $5.6 million.

Additionally, smaller platforms such as Shezmu, Onyx, BananaGun, Bedrock, and CUT also suffered attacks, with losses ranging from $1.4 to $4.9 million.”

One of the most serious attacks recorded last month was via phishing, and reached $32.4 million “via $spWETH signatures. Although this incident was not included in the official figures reported by PeckShield.”

M.Pino

Source: beincrypto

(Reference image source: Getty Images for Unsplash+)

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on Twitter and Instagram

La entrada Cryptocurrency theft losses exceeded $120 million in September apareció primero en Bitfinance.

Support for Windows 10 will officially end in October 2025, according to information from Microsoft. Security and vulnerability problems that have not been resolved until that date will remain unchanged.

According to the technology company, “a new update will only be released in case of urgent need, and this would only occur if a very serious vulnerability was found that had to be patched.”

Windows 10 users know that despite the end of support, they will be able to continue using the operating system, although over time it could give unpleasant surprises in terms of security. On the other hand, they are aware that “support of important applications will gradually be eliminates.”

Against this background, the 0patch platform has seen a business niche, after the success it has obtained by offering updates to Windows 7 to correct security problems. “The company will offer an extended support program for Windows 10 for a period of up to five years that, in theory, could be extended based on demand.”

It is important to clarify that their updates “act as micropatches, a type of solution that is applied directly to the processes in memory in a fast, safe way and with minimal consumption of time and resources. These types of patches do not even require a system restart, and can resolve very serious vulnerabilities in a matter of seconds.”

M.Pino

Source: muycomputer

(Reference image source: Windows in Unsplash)

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on Twitter and Instagram

La entrada Windows 10 support will officially end in October 2025 apareció primero en Bitfinance.

The security and protection of data, passwords and other user information is the main objective of Google. For this reason, he has decided to update Chrome once a week.

The increase in attacks by cybercriminals, with increasingly sophisticated methods, is the main reason for this change, since until now Chrome was updated every two weeks. The new measure will take effect “in version 116 of Google Chrome.”

From Google, they have indicated that the Chromium open source project, “the basis of Google Chrome, allows anyone to access the source code and follow in real time the discussions between developers, the code contributions and the corrections made by collaborators.”

The technology giant has indicated that the security updates will be applied in a first phase “to the development versions of Chrome (Beta/Canary)”, since exhaustive tests are carried out that check “its stability, performance and possible compatibility problems before to be implemented in the browser version”.

Although hackers always find some crack to sneak into the system and carry out their attacks, with weekly updates Google seeks to optimize data protection quickly and effectively, in addition to focusing on a consistent update scheme.

M.Pino

Source: 20minutos

(Reference image source: Adarsh Chauhan, Unsplash)

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on Twitter and Instagram

La entrada Google will update Chrome once a week apareció primero en Bitfinance.

A vulnerability in a WordPress plugin put millions of websites built on WordPress at risk, as it allows a malicious actor to log in as an administrator and take control of the site with full privileges.

Elementor Pro is a plugin that allows users to create professional-looking web pages easily, without the need for them to know how to code. It is installed on more than eleven million pages.

Researchers at NinTechNet, a company that designed a firewall web application for WordPress, have identified a vulnerability in Elementor Pro, which was rated “high severity”, as reported on their official blog.

This bug is found in the premium version and its exploitation requires WooCommerce to be enabled on the website, thus giving access to the registration page, where a malicious actor could create an account with administrator privileges.

Jerome Bruandet of NinTechNet discovered the vulnerability on March 18, in version 3.11.6 (and earlier) of Elementor Pro. Patchstack researchers have confirmed that the vulnerability has been actively exploited, and therefore it is recommended to install when before the correction that Elementor (3.11.7) has already prepared, available since March 22.

K. Tovar

Source: Notiamerica

(Reference image source: Fikret Tozak, Unsplash)

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on Twitter and Instagram

La entrada WordPress vulnerability puts millions of websites at risk apareció primero en Bitfinance.

The head of supervision of the European Central Bank, Andrea Enria, recently stated that the entity carried out a measurement of the response capacity of banks to cyberattacks.

Since the beginning of the war between Russia and Ukraine, the number of cases of cyberattacks, mainly on banks, with greater security. Although the ECB has not released powers on the facts, it is working on a way to strengthen security.

Faced with the risks to the European financial system, Enria said in an interview: “That is why for next year we will be launching a thematic stress test on cyber resilience, which will try to test how banks can respond and recover from a successful cyberattack.”

They will spend a lot of time and money analyzing the strengths, as well as the weaknesses, of European banks in the face of cyberattacks that have been causing damage to the banking sector.

M.Pino

With information from international media

(Reference image source: Unsplash, in collaboration with Shubham Dhage)

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on Twitter and Instagram

La entrada ECB will study the response of banks to cyberattacks apareció primero en Bitfinance.

The United Nations Organization issued a recent report, in which the population that in 2022 received some type of humanitarian aid, coordinated through this organization, the Red Cross and national organizations, is estimated at 2.8 million Venezuelans.

In Venezuela, aid is coordinated through various humanitarian entities and the Office for the Coordination of Humanitarian Affairs, OCHA. The UN indicates in its report that last year assistance covered “53.8 % of the goal set by the UN, of 5,200,000.”

The most vulnerable, included in this humanitarian aid, were “adults between 18 and 59 years of age, 941,000 children and adolescents and 646,000 adults over 60 years of age,” according to OCHA.

Among the most critical sectors is the supply of drinking water, medicines, sanitation and hygiene, as well as those related to food and nutritional supplements for the population.

The deliveries are part of the “Humanitarian Response Plan that the UN approved last year, materialized in 329 of the 335 municipalities in the country.”

M.Pino

Source: swissinfo

(Reference image source: Kevin Paes, Unsplash)

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on Twitter and Instagram

La entrada 2.8 million Venezuelans received humanitarian aid in 2022 apareció primero en Bitfinance.

Given the vulnerability detected in the iOS 15, iPadOS 15 and MacOS Monterey operating systems, the technology giant Apple has released two patches that help reduce attacks on users.

According to statements to the media and the report on its Support page, Apple detected “a vulnerability present in the kernel, the core of the operating system,” which allows an application to “execute arbitrary code with kernel privileges.”

The company identified a first vulnerability as CVE-2022-32894, which has caused conflicts in iOS 15, iPadOS 15 and MacOS Monterey systems. The second, called CVE-2022-32893, was found in WebKit, Safari’s browser engine.

Following the detection of these cybersecurity cases, Apple released the MacOS Monterey 12.5.1 and iOS/iPadOS 15.6.1 patches, which urges users to install as soon as possible on iPhone 6s and later models, as well as on all iPad Pro, on iPad Air 2 and later models.

These security patches should also be installed on iPad 5th generation and later, iPad mini 4 and later, and iPod touch 7th generation.

M.Pino

Click the link to subscribe for free to our news and media group on Telegram: https://t.me/G_ELSUMARIO_News

Source: infolibre

La entrada Apple releases security patches for iOS 15, iPadOS 15 and MacOS Monterey apareció primero en Bitfinance.

Asdrúbal Oliveros, economist and director of Ecoanalítica, stressed that the Venezuelan oil industry is experiencing “an unprecedented fragility and vulnerability in the country” that limits the recovery of the oil sector, despite registering an increase in daily production.

According to the economist, “Venezuelan production suffers a degradation of the productive capacity that causes significant inter-monthly falls in production to be registered.”

As will be recalled, production between 2014 and 2020 fell by 86 %, coupled with the rationing of diluents, the absence of active drills, the limitations in obtaining external financing that generate instability in production, and the stable recovery of local production.

The Organization of Petroleum Exporting Countries (OPEC) reported that Venezuela in March reported a production equivalent to 697,000 barrels per day, according to secondary sources. Observing an increase of 8,000 barrels per day, compared to the month of February 2022.

While the representatives of the Venezuelan government notified the agency that the production of March reached 728,000 barrels per day, registering a reduction in production of 60,000 barrels, compared to the month of February when it reported 788,000 barrels per day.

Difficulties in accessing foreign exchange

Another aspect that has an impact on the recovery of the Venezuelan oil sector and the country’s economy in general is the limitations that PDVSA has in accessing foreign currency, due to the fact that “about 60 % of the exported Venezuelan crude oil passes through the Russian financial system, which is in charge of to deliver dollars in cash to PDVSA.”

Oliveros said Russia is currently the most sanctioned nation in the world and a large part of its banking system is frozen or expelled from the global financial system, which “causes short-term complications for the Venezuelan government to access cash in dollars.”

He explained that in this context, Venezuela finds itself in a complex situation because it requires “1,062 million dollars to be able to guarantee the survival of its population. In addition to the increase in social spending and the 127.2 billion dollars from its creditors after more than 4 years of default.”

M. Rodríguez

Source: finanzasdigital.com

La entrada Fragility of the oil industry limits its recovery apareció primero en Bitfinance.

Around 100 million Samsung smartphones were affected by a vulnerability in the cryptographic security environment of the South Korean brand, which exposed hardware-protected user keys to cyberattacks, although the company has already fixed it.

The bug, discovered by researchers at Tel Aviv University in Israel, centers on Samsung’s implementations of the TrustZone operating system, which runs parallel to Android on its mobile devices.

As the authors report in the study, the cryptographic design and implementation of a hardware-supported system to protect Samsung mobile keys using trusted execution environments had “severe design flaws.”

These issues affected the latest flagship families released by Samsung, including the Galaxy S21, S20, S10, S9, and S8 series, which came to market between 2021 and 2017 and are direct predecessors of Samsung. the Galaxy S22 this year.

Through reverse engineering techniques and analysis of the code structure of Samsung’s TrustZone implementation, Tel Aviv University researchers tested the feasibility of three attack techniques that expose cryptographic information on smartphones.

After knowing the vulnerabilities investigated, Samsung released a security patch to solve the problem of its smartphones in August of last year, which was completed with a subsequent update in October to finish protecting its devices.

K. Tovar

Source: Computerhoy

La entrada Vulnerability in Samsung exposed cryptographic keys apareció primero en Bitfinance.