Security News > 2020 > February > Most credential abuse attacks against the financial sector targeted APIs
According to data from Akamai, up to 75% of all credential abuse attacks against the financial services industry targeted APIs directly.
According to the report's findings, from December 2017 through November 2019, 85,422,079,109 credential abuse attacks were observed.
On August 7, 2019, the single largest credential stuffing attack against a financial services firm was recorded, consisting of 55,141,782 malicious login attempts.
On August 25, in a separate incident, the criminals targeted APIs directly, in a run that consisted of more than 19 million credential abuse attacks.
The top attack type against the financial services sector was Local File Inclusion, with 47% of observed traffic.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/J-xitVXj4OQ/
Related news
- How New AI Agents Will Transform Credential Stuffing Attacks (source)
- Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials (source)
- How financial institutions can minimize their attack surface (source)
- Australian pension funds hit by wave of credential stuffing attacks (source)
- Malicious PyPI Package Targets MEXC Trading API to Steal Credentials and Redirect Orders (source)