Threat of the month: Credentials theft

Share this article:
Threat of the month: Credentials theft
Threat of the month: Credentials theft

What is it?

Cyber criminals seek user credentials that will enable access to valuable systems and resources.

How does it work?

Key-logging malware captures user keystrokes during login; a phishing site is designed to look like a legitimate login page; cyber criminals hack into e-commerce websites and social networks to extract the user database, including user credentials. Since users often re-use credentials, there is a high likelihood that the same credentials can be used for logging into other systems as well.

Should I be worried?

Yes, stolen credentials enable fraudulent activity related to personal information. They are also often used for breaching corporate environments and compromising systems and operations. 

How can I prevent it?

Don't login to sensitive applications from
unprotected machines. Change passwords often and don't use the same credentials across
multiple systems.



Share this article:
close

Next Article in Threat of the Month

Sign up to our newsletters

More in Threat of the Month

Threat of the month: Linksys router zero-day

Threat of the month: Linksys router zero-day

This month's vulnerability is currently being exploited by a worm known as "TheMoon."

Threat of the month: Java vulnerabilities

Threat of the month: Java vulnerabilities

For March's threat of the month, Secunia's Kasper Lindgaard believes Java vulnerabilities should be at the top of everyone's radar.

Threat of the month: Government agencies

Threat of the month: Government agencies

The continued leak of classified government intelligence documents by Edward Snowden draws into question the balance of offensive and defensive capabilities of governments.