Sony Pixel Power calrec Sony

Akamai Threat Research: Phishing and Credential Stuffing Attacks Remain Top Threat to Financial Services Organizations and Customers

01/08/2019

Akamai Threat Research: Phishing and Credential Stuffing Attacks Remain Top Threat to Financial Services Organizations and Customers Latest State of The Internet / Security Report Observes 3.5 Billion Malicious Login Attempts Targeting the Financial Services Sector; Illustrates Akamai's Unique Threat Visibility

Cambridge, MA | July 31, 2019

Newly released data from Akamai's 2019 State of the Internet / Security Financial Services Attack Economy Report has found that 50% of all unique organizations impacted by observed phishing domains were from the financial services sector. The data shows that, in addition to unique phishing attempts, adversaries also leveraged credential stuffing attacks to the tune of 3.5 billion attempts during an 18-month period, putting the personal data and banking information of financial services customers at risk.

The report indicates that between December 2, 2018 and May 4, 2019, nearly 200,000 (197,524 to be exact) phishing domains were discovered, and of those domains, 66% targeted consumers directly. When taking the phishing domains targeting consumers only into consideration, 50% of those targeted companies in the financial services industry.

We've seen a steady rise in credential stuffing attacks over the past year, fed in part by a growth in phishing attacks against consumers, said Martin McKeay, Security Researcher at Akamai and Editorial Director of the State of the Internet / Security Report. Criminals supplement existing stolen credential data through phishing, and then one way they make money is by hijacking accounts or reselling the lists they create. We're seeing a whole economy developing to target financial services organizations and their consumers.

Once criminals have succeeded in their schemes, they need to process their ill-gotten data and funds. As Akamais report highlights, one method of dealing with this situation centers on bank drops' - packages of data that can be used to fraudulently open accounts at a given financial institution. Bank drops will typically include a persons stolen identity - often called fullz by criminals online, including name, address, date of birth, Social Security details, drivers license information, and credit score. Secure access to the fraudulent accounts comes via remote desktop servers, which are matched to the geographic location of the bank and the fullz.

Financial institutions continue to investigate the ways in which criminals are opening these drop accounts, and are working diligently to stay ahead of the curve. What most businesses don't realize, however, is that criminals are recycling old attack methods.

Akamai's findings revealed that 94% of observed attacks against the financial services sector came from one of four methods: SQL Injection (SQLi), Local File Inclusion (LFI), Cross-Site Scripting (XSS), and OGNL Java Injection (which accounted for more than 8 million attempts during this reporting period). OGNL Java Injection, made famous due to the Apache Struts vulnerability, continues to be used by attackers years after patches have been issued.

In the financial services industry, criminals have also started launching DDoS attacks as a distraction to conduct credential stuffing attacks or to exploit a web-based vulnerability. Over the course of 18 months, Akamai uncovered more than 800 DDoS attacks against the financial services industry alone.

Attackers are targeting financial services organizations at their weak points: the consumer, web applications and availability, because that's what works, said McKeay. Businesses are becoming better at detecting and defending against these attacks, but point defenses are bound to fail. It requires being able to detect, analyze, and defend against an intelligent criminal who's using multiple different types of tools for a business to protect its customers. For more than twenty years, Akamai has been leveraging its unique visibility into the full spectrum of attacks to help protect customers from these types of ever-evolving nefarious activities.

The criminal economy thrives, in part, because they target the financial services industry. By targeting banks for example, criminals attempt to steal sensitive data, and then turn around and use that same data to open fake accounts and lines of credit. Its a continuous cycle of crime. There is a deep level of irony in the fact that criminals are targeting the very industry they need to survive. While financial institutions are becoming better at detecting these attacks, adversaries continue to find success with old tricks, and that's a problem.

The Akamai 2019 State of the Internet / Security Report is available for download here. For additional information where the security community can access, engage with, and learn from Akamai's threat researchers and the insight that the Akamai Intelligent Edge Platform affords into the evolving threat landscape, visit Akamai's Threat Research Hub.

About Akamai Akamai secures and delivers digital experiences for the world's largest companies. Akamai's intelligent edge platform surrounds everything, from the enterprise to the cloud, so customers and their businesses can be fast, smart, and secure. Top brands globally rely on Akamai to help them realize competitive advantage through agile solutions that extend the power of their multi-cloud architectures. Akamai keeps decisions, apps and experiences closer to users than anyone - and attacks and threats far away. Akamai's portfolio of edge security, web and mobile performance, enterprise access and video delivery solutions is supported by unmatched customer service, analytics and 24/7/365 monitoring. To learn why the world's top brands trust Akamai, visit www.akamai.com, blogs.akamai.com, or @Akamai on Twitter. You can find our global co
LINK: https://www.akamai.com/uk/en/about/news/press/2019-press/state-of-the-...
See more stories from akami

Most recent headlines

12/11/2025

DirecTV Launches New CTV Political Ad Platform

NEW YORK and WASHINGTON DirecTV Advertising has launched DirecTV Elect, a new digital platform powered by AI that is specifically designed for political adverti...

12/11/2025

Carr Weighs in on Disney, YouTube Dispute

WASHINGTON Federal Communications Commission Chair Brendan Carr has weighed in on the blackout of ABC, ESPN and other Disney programming on YouTube TV with a po...

11/11/2025

SVG Sit-Down: How Pixellot's Automated-Production-Tech Stack Is Evolving in the AI Era

SVG Sit-Down: How Pixellot's Automated-Production-Tech Stack Is Evolving in ...

11/11/2025

Introducing SVG's New Platinum White Papers' Platform

Introducing SVG's New Platinum White Papers' PlatformTop technology providers detail how they are innovating in sports productionBy SVG Staff Tuesday...

11/11/2025

SVG All-Stars: Vanessa Lindsey, Senior Director, Technical and Remote Operations and Crewing, TNT Sports

SVG All-Stars: Vanessa Lindsey, Senior Director, Technical and Remote Operations...

11/11/2025

Lesson Plan: How Big Ten Network's StudentU Produces Broadcast Pros - and 2,000+ Live Games a Year

Lesson Plan: How Big Ten Network's StudentU Produces Broadcast Pros - and 2,...

11/11/2025

Peacock Performance View Feature Now Available for All NBA Games on Peacock

Peacock Performance View Feature Now Available for All NBA Games on PeacockBy Jason Dachman, Editorial Director, U.S. Tuesday, November 11, 2025 - 2:10 pm P...

11/11/2025

Spotify and NMPA Announce Agreement to Expand Direct-Licensing Audiovisual Opportunities for Independent Publishers

Today, Spotify and the National Music Publishers' Association (NMPA) launche...

11/11/2025

SGL Carbon site in Willich celebrates 30 years of Expertise in High-Tech Prepregs

This year, SGL Carbons Willich site is celebrating a special anniversary. For 30...

11/11/2025

New Nielsen Rural Survey reveals the changing media habits of Filipinos outside major cities

Rural connectivity rising fast Traditional media still matters Rural Filipinos...

11/11/2025

Wohler Bows 3 New Features for iVAM2-MPEG SRT Monitor

Wohler has said it has added three Secure Reliable Transport (SRT) connections to its new iVAM2-MPEG monitor....

11/11/2025

OpenDrives Transforms into a Data Services Company with A...

OpenDrives, Inc., a leader in software-defined data storage and data services, recently hosted an exclusive event in Los Angeles to celebrate the soft launch of...

11/11/2025

NAKIVO Reports 29 Percent Revenue Growth in EMEA and Stro...

NAKIVO Inc., a fast-growing software company specialising in data protection and disaster recovery solutions for virtual, physical, cloud, and SaaS environments...

11/11/2025

Kogan Chooses Amagi to Power the Launch of Kogan TV in Au...

Amagi, a cloud-based SaaS technology solutions provider for broadcast and streaming TV, today announced that Kogan Australia, one of the country's leading e...

11/11/2025

Radio Romania Upgrades to DHD RX2 and TX2 Audio Mixing Co...

The Romanian Radio Broadcasting Company (SRR) has commissioned a new state-of-the-art radio production and broadcast facility centred on a DHD RX2 and TX2 conso...

11/11/2025

Alfalite strengthens its presence in the Americas through...

Alfalite, Europe's only LED screen manufacturer, has announced a strategic partnership with Adistec Corp, a leading value-added distributor of infrastructur...

11/11/2025

Calrec delivers future focused production for Whisper at...

Delivering dedicated remote production facilities across a range of live sports for a growing roster of broadcast clients, the Cymru Broadcast Centre (CBC) at W...

11/11/2025

SES Delivers Solid 9 Months and Q3 2025 Results

Luxembourg, 6 November 2025 -- SES S.A. fully consolidates Intelsat from 17 July 2025 and announces financial results for the nine months and three months ended...

11/11/2025

MS NOW Inks Deal with AccuWeather for Weather Coverage

NEW YORK AccuWeather has announced a multi-year deal with MS Now to provide weather forecasts, content, data, and access to its expert meteorologists to the net...

11/11/2025

Ookla Unveils New Network Diagnostic Device Speedtest Pulse

NEW YORK Ookla has introduced Speedtest Pulse, a new network diagnostic device designed to provide definitive, smartphone-based validation and troubleshooting f...

11/11/2025

Prime Video Launches Location-Based Interactive Video Ads

In a rollout that will further heighten the competition between streaming services and local broadcasters, Prime Video is rolling out location-based interactive...

11/11/2025

Rohde & Schwarz and its partners unveil new satellite payload testing innovation at Space Tech Expo Europe 2025

Rohde & Schwarz and its partners unveil new satellite payload testing innovation...

11/11/2025

The Fourth Season of 'Alpha Males' Arrives on Netflix on January 9

Back to All News The Fourth Season of Alpha Males Arrives on Netflix on January 9 Entertainment 11 November 2025 GlobalSpain Link copied to clipboard Toge...

11/11/2025

In memory of Denise Turner: A respected voice in media research

Throughout her distinguished career, she shaped the way media is measured and valued, contributing enormously to the credibility and progress of our sector. Den...

11/11/2025

Dizzy Deliveries is back with Series 3 on RTKIDS!

After international award wins, the much-loved children's series returns with 13 brand new episodes with some very special children and guests including Ros...

10/11/2025

New Frontier: Extreme H's Ali Russell on the Evolution of Motorsport From Electric to Hydrogen

New frontier: Extreme H's Ali Russell on the evolution of motorsport from el...

10/11/2025

SVG Sit-Down: How the XR Sports Alliance Makes XR Easier Than Ever for Rightsholders

SVG Sit-Down: How the XR Sports Alliance Makes XR Easier Than Ever for Rightshol...

10/11/2025

FutureSPORT 2025: F1's Wendy Hendrickx on Putting Fans at the Heart of the Action

FutureSPORT 2025: F1's Wendy Hendrickx on putting fans at the heart of the a...

10/11/2025

Paul Tagliabue, Former NFL Commissioner, Sports Broadcasting Hall of Famer, Dies at 84

Paul Tagliabue, Former NFL Commissioner, Sports Broadcasting Hall of Famer, Dies...

10/11/2025

Act Now! SVG Summit Complimentary Registration Closes on Dec. 9

Act Now! SVG Summit Complimentary Registration Closes on Dec. 9Don't miss out on the biggest event of the year in sports productionBy SVG Staff Monday, No...

10/11/2025

2025 Sports Broadcasting Hall of Fame: Jerry Jones, Visionary of Value

2025 Sports Broadcasting Hall of Fame: Jerry Jones, Visionary of ValueDave Barron, SVG Contributor Monday, November 10, 2025 - 2:30 pm Print This Story | S...

10/11/2025

Rebuilding Reminds Us to Seek the Balm of Community

(L-R) Kali Reis, Josh O'Connor, and Max Walker-Silverman attend the 2025 Sundance Film Festival premiere of Rebuilding at Eccles Theatre on January 26, 20...

10/11/2025

Nielsen: Alabama Is Most-Watched College Football Team

NEW YORK Nielsen said it has started releasing rankings of the most-watched college football teams. In its first ranking, through the first 10 weeks of the seas...

10/11/2025

Middle-AgeD Viewers Power YouTube Long-Form Content

LONDON Viewers who remember a time before YouTube existed are the biggest consumers of the platform's movies and TV shows, according to a new report from Am...

10/11/2025

Lightware expands Lightware Academy with new Taurus Room...

Lightware, an industry leader in signal management, has announced a series of updates to its Lightware Academy courses, including the launch of a new Taurus Roo...

10/11/2025

Thuraya Enters South African Market for the First Time with Thuraya-4 Commercial Rollout

Marks Thuraya's first operational entry into South Africa Extends reliable,...

10/11/2025

VEON Raises 2025 Outlook, Robust Revenue and EBITDA Momentum, Direct Digital Revenue up 63% YoY

10 Nov 2025 VEON Raises 2025 Outlook, Robust Revenue and EBITDA Momentum, Direc...

10/11/2025

Shining a Spotlight on Storytelling: Marcus Van Altena Joins Techtel as Business Development Manager

Shining a Spotlight on Storytelling: Marcus Van Altena Joins Techtel as Business...

10/11/2025

Sky News partners with Arc XP to power the future of digital journalism

Monday 10 November 2025 Sky News partners with Arc XP to power the future of digital journalism Today, Sky News can announce that it has partnered with Arc XP...

10/11/2025

Rohde and Schwarz Cybersecurity to develop solutions for VS laptops

Rohde and Schwarz Cybersecurity to develop solutions for VS laptops Munich, 10th of November 2025 - Rohde & Schwarz Cybersecurity has developed a specialized...

10/11/2025

Satellite Payload and Components Testing with instruments from Rohde & Schwarz at Space Tech Expo 2025

Satellite Payload and Components Testing with instruments from Rohde & Schwarz a...

10/11/2025

The Elixir' Brings Indonesian Zombies to The World

Back to All News The Elixir' Brings Indonesian Zombies to The World Entertainment 10 November 2025 GlobalIndonesia Link copied to clipboard The Elix...

10/11/2025

Netflix ISP Speed Index for October 2025

Back to All News Netflix ISP Speed Index for October 2025 Product 10 November 2025 Global Link copied to clipboard This month, 1% of Internet Service Prov...

10/11/2025

'Love Is Blind: Italy' - Now Available the Trailer for the Italian Adaptation, Coming to Netflix on December 1

Back to All News Love Is Blind: Italy - Now Available the Trailer for the Itali...

10/11/2025

Pets, Laughs and Chaos! RT KIDS's The Big Pet Project brings Ireland's amazing pets to RT One and RT Player

76 animals. Six locations. Two Irish stars. One Pet Mobile. From surfing dogs t...

10/11/2025

Think SMART: New NVIDIA Dynamo Integrations Simplify AI Inference at Data Center Scale

Editor's note: This post is part of Think SMART, a series focused on how lea...

09/11/2025

Badly in Love': A Wild New Reality Dating Series from Japan Lands on December 9

Back to All News Badly in Love': A Wild New Reality Dating Series from Jap...

09/11/2025

Dalet Unveils Agentic AI Media Workflows at IBC2025

Dalet today announced a transformative leap forward for media operations: Agentic Artificial Intelligence (AI) that unifies the Dalet ecosystem under one natura...

08/11/2025

College Hoops Preview 2025: TNT Sports Puts Multi-Feed Production Model Front and Center for Largest Slate Ever

College Hoops Preview 2025: TNT Sports Puts Multi-Feed Production Model Front an...

08/11/2025

Station Execs Bullish on Prospects for 2026 Ad Market, Deregulation

While most station groups reported major declines in ad revenue in the third quarter, thanks to a steep decline in political advertising compared to a year ago,...