How Does Credential Stuffing Work?Ĭredential stuffing is a commonly used cyberattack that relies on people reusing usernames and passwords on several accounts. Impacted accounts have had their passwords automatically reset and should have received a notification by now regarding the breach, along with a credit monitoring offer and information on next steps.īased on an internal investigation sparked by a large volume of failed login attempts in mid-December, Norton LifeLock believes that a third-party used a cyberattack method called credential stuffing to breach their systems. “…we cannot rule out that the unauthorized third party also obtained details stored, especially if your Password Manager key is identical or very similar to your Norton account password.” Norton also warns Norton Password Manager customers that the attack may have also exposed details stored in the platform’s private vault feature – meaning whatever sensitive information users stored there may have been breached. However, we strongly believe that an unauthorized third party knows and has utilized your username and password for your account… this username and password combination may potentially also be known to others,” Norton LifeLock said. Gen Digital, the parent company of Norton LifeLock, notified customers, including nearly 6,500 Norton Password Manager customers, that private information including full names, addresses and phone numbers may have been exposed to an unauthorized third party as part of the breach.Īccording to their official statement to the Office of the Vermont Attorney General, Norton LifeLock believes the attack resulted from a third-party attack rather than a direct breach of their systems. ![]() ![]() ![]() A credential stuffing attack is the likely culprit behind the recent breach of Norton LifeLock that impacted thousands of Norton Password Manager customers.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |