Stolen credentials
Coverage of Stolen credentials in the Nexus archive.
- Ultrahuman says hackers accessed customers’ wellness data via internal tool
Ultrahuman experienced a data breach where hackers accessed customers' wellness data through an internal tool. The breach occurred due to stolen credentials from a malware-infected employee laptop.
- No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks
The cybersecurity industry has focused on sophisticated threats like zero-days and AI-generated exploits, but stolen credentials remain the most reliable entry point for attackers. Identity-based attacks, particularly through credential stuffing, are a dominant initial access vector in breaches.
- Adaptavist Group breach spawns imposter emails as ransomware crew claims mega-haul
The Adaptavist Group is investigating a security breach involving stolen credentials, while a ransomware crew claims to have stolen significantly more data than the company has disclosed. Fake emails linked to the breach are circulating as part of the attack.
- Man who hacked US Supreme Court filing system sentenced to probation
Nicholas Moore hacked into three U.S. government networks using stolen credentials and later bragged about the breach by posting victims' personal data on Instagram under the handle @ihackedthegovernment. He was sentenced to probation for his actions.
- 5 Ways Zero Trust Maximizes Identity Security
The article discusses how Zero Trust frameworks enhance identity security by addressing stolen credentials, which are a major breach vector. It highlights Specops' approach to limiting access, enforcing device trust, and preventing lateral movement to mitigate privilege escalation risks.
- When attackers already have the keys, MFA is just another door to open
The article discusses how stolen credentials can bypass Multi-Factor Authentication (MFA), turning authentication systems into an attack surface. A wearable biometric authentication token is presented as a solution to verify users rather than sessions, blocking phishing relays and MFA bypass attempts.