Dark Reading

Web Attacks Focus on SQL Injection, Malware on Credentials

Attackers continued to stick to a well-known playbook for the second quarter of 2019, focusing on attacking websites using SQL injection attacks and stealing passwords and credentials via malware and ...

Security study finds thousands of API credentials exposed on the web for years

Researchers scan 10 million websites and uncover thousands of exposed API keys quietly granting access to cloud systems and critical infrastructure ...
TechRepublic

Credential harvesting malware appears on deep web

New cloud-focused credential harvester available on encrypted messaging service Telegram is part of a trend of Python scrapers making it easier to bait multiple phishing hooks. Image: Adobe ...
Dark Reading

Legion Malware Marches onto Web Servers to Steal Credentials, Spam Mobile Users

Threat actors are selling a novel credential harvester and hacktool via a Telegram channel, which can exploit numerous Web-based services to steal credentials. It also has the bonus ability to launch ...
TechNewsWorld

Pandemic Gooses Stolen Credentials Prices on Dark Web

After crashing in 2019, Dark Web markets for stolen credentials rebounded during the first half of 2020, largely due to major shifts in consumer behavior caused by the global pandemic. According to ...
Bleeping Computer

OpenAI credentials stolen by the thousands for sale on the dark web

Threat actors are showing an increased interest in generative artificial intelligence tools, with hundreds of thousands of OpenAI credentials for sale on the dark web and access to a malicious ...
Morningstar

Commvault and CloudSEK Join Forces to Address a Growing and Rapidly Emerging Identity Threat: Exposed Credentials on the Dark Web

Integration combines CloudSEK's external credential exposure intelligence with Commvault's Active Directory offerings to help organizations combat identity and AI-driven cyberattacks TINTON FALLS, N.J ...