Managed Detection and Response (MDR) Insights
Let's talk about credential leaks. Whether it’s a new breach or a recycled list, credential leaks remain a valid threat to organizations. Credentials, which are user emails and corresponding passwords for a given site or application, are a cybercriminal’s favorite data type because they allow them to masquerade as a legitimate user on a system. Since January, 62% of Bitdefender’s MDR’s actionable intelligence alerts have been credential leaks. As we have seen within the last 2+ years, these attack vectors are industry and location agnostic, and they're only increasing. Verizon’s Data Breach Investigations Report indicates that credentials made up 42% of all data compromised by APTs in 2021, stating, “if you can access the asset directly over the internet simply by entering the credentials, so can the criminals”.
Article Link: Bitdefender Threat Debrief | July 2022