Security News > 2016 > June > Botnet-powered account takeover campaign hit unnamed bank (Help Net Security)

A single attacker has mounted two massive account takeover (ATO) campaigns against a financial institution and an entertainment company earlier this year, and used a gigantic botnet comprised of home routers and other networking products to do it. “ATO attacks (also known as credential stuffing) use previously breached username and password pairs to automate login attempts. This data may have been previously released on public dumpsites such as Pastebin or directly obtained by attackers through … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/dRGHY9RdeGs/