Security News > 2021 > February > RIPE NCC Internet Registry discloses SSO credential stuffing attack
RIPE NCC is warning members that they suffered a credential stuffing attack attempting to gain access to single sign-on accounts.
RIPE NCC is a not-for-profit regional Internet registry for Europe, the Middle East, and parts of Central Asia.
RIPE disclosed today that they suffered a credential stuff attack over the weekend targeting their single sign-on service.
This SSO service is used to login to all RIPE sites, including My LIR, Resources, RIPE Database, RIPE Labs, RIPEstat, RIPE Atlas, and the RIPE Meeting websites.
"Last weekend, RIPE NCC Access, our single sign-on service was affected by what appears to be a deliberate 'credential-stuffing' attack, which caused some downtime."
The RIPE NCC SSO service offers two-factor authentication, which members can enable on their profile page.
News URL
Related news
- Retail chain Hot Topic hit by new credential stuffing attacks (source)
- Roku warns 576,000 accounts hacked in new credential stuffing attacks (source)
- Okta warns of "unprecedented" credential stuffing attacks on customers (source)
- Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks (source)
- Week in review: PoCs allow persistence on Palo Alto firewalls, Okta credential stuffing attacks (source)