Security News > 2020 > February > Most credential abuse attacks against the financial sector targeted APIs
According to data from Akamai, up to 75% of all credential abuse attacks against the financial services industry targeted APIs directly.
According to the report's findings, from December 2017 through November 2019, 85,422,079,109 credential abuse attacks were observed.
On August 7, 2019, the single largest credential stuffing attack against a financial services firm was recorded, consisting of 55,141,782 malicious login attempts.
On August 25, in a separate incident, the criminals targeted APIs directly, in a run that consisted of more than 19 million credential abuse attacks.
The top attack type against the financial services sector was Local File Inclusion, with 47% of observed traffic.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/J-xitVXj4OQ/
Related news
- Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks (source)
- New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data (source)
- Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing Attacks (source)
- New Cryptojacking Attack Targets Docker API to Create Malicious Swarm Botnet (source)
- Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials (source)
- Andariel Hacking Group Shifts Focus to Financial Attacks on U.S. Organizations (source)