Hackers compromised more than 300,000 Spotify accounts in a credential stuffing attack exploiting a third-party database containing 380 million credentials stolen from other breaches.
While only 14,500 accounts were compromised in the relatively small credential stuffing attack that successfully hit the Canadian government, highly sensitive financial and personal information were exposed.
Credential stuffing attacks directed at LiveJournal's social media service Dreamwidth appear to be fueled by a hack six years ago that exposed 26 million of their usernames and passwords.
