Discover and read the best of Twitter Threads about #CredentialStuffing

Most recents (1)

Profile picture
Pamela Dingle
@pamelarosiedee
1/ Did you know that even if you always use FIDO security keys or an authenticator app to login, an attacker can still target the password you forgot you had? Reasons why you might choose to delete your
password (a thread)
2/ Transparency: I am an identity geek at Microsoft and we now support password deletion for our consumer accounts: microsoft.com/security/blog/…. This is my attempt to outline *why* this kind of feature is important, here we go…
3/ #Cyberattacks like password spray and #CredentialStuffing can still be successful for attackers if you previously set your password to something predictable or reused the password at other sites. Deletion takes guessing and replay out of the attacker toolbox for your account.
Read 17 tweets

Related hashtags

#Infosec #CredentialStuffing #passwordless #Cyberattacks

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!