Credential stuffing attacks are escalating across major platforms, with hackers using stolen login databases to breach accounts at scale. Recent incidents include KDDI's exposure of 14.2 million logins, FortiGate firewall compromises affecting 110 million credentials, and targeted attacks on DraftKings, exposing the vulnerability of reused passwords across services.
·KDDI data breach exposes 14.2 million logins through shared infrastructure flaw affecting six ISPs
·FortiBleed campaign actively exploits FortiGate firewalls, compromising over 110 million credentials
·DraftKings users targeted by credential stuffing attacks using leaked login combinations
·Unique passwords across accounts identified as critical defense against widespread breaches
·Credential stuffing tools increasingly automated, enabling attackers to test stolen credentials at high velocity
drawn from WeLiveSecurity, Tech Times, WJAR, TechRepublic · updated 2d ago