November 8, 2018

HSBC Data Breach Another Example of Credential Stuffing and Reliance on Passwords

Credential stuffing is an ongoing cybersecurity battle for protecting customer passwords and customer identity through access controls as seen in the recent HSCB data breach. This is why an intelligent contextual multi-factor authentication is key to preventing and eliminating authorization to operate instantly.

Acceptto's principal architect, Fausto Oliveira commented on this issue to Security Now:

"Credential stuffing is a pervasive security issue caused by the complexity of today's authentication mechanisms that still rely on a password. Users today have access to hundreds of services each requiring a password and as such credential re-use if often common,"

Read the full story at Security Now.