Bad bots account for 30% of internet traffic and are increasingly used in account takeover and API attacks, while human traffic fell to an 8-year low of just over half of all internet traffic.
Attackers approach targets for account takeover pretending to be a member of the Meta tech support team, using Facebook profiles that they have created that have a post history that makes it appear as if they are a legitimate employee.
eCommerce retailers face the most significant risk from automated malicious software, with hackers deploying advanced bad bots in nearly two-thirds of account takeover attacks.
A hacker is claiming to have stolen over one billion user records, but security researchers are not convinced that this came from a legitimate TikTok hack or that account takeovers were involved.
An account takeover hit Disneyland's Facebook and Instagram, and the company took some of its social media presence offline for a short period as it recovered.
The Iran-backed campaign targets prominent Israelis and uses spear phishing to gain access to emails, leveraging the account takeover to hijack existing conversations.
Digital Shadows Photon Research team found that over 24 billion stolen user credentials were available for sale on the dark web market in 2022, an increase of 65% in two years.
EA introduced new security measures to prevent account takeover attacks after hackers successfully breached high-profile players’ accounts via phishing and social engineering attacks.