Sony Pixel Power calrec Sony

Akamai Security Research: Loyalty Programs Continue to be Targeted by Criminals as Account Data is Easily Sold or Traded

22/10/2020

Akamai Security Research: Loyalty Programs Continue to be Targeted by Criminals as Account Data is Easily Sold or Traded Retail, Hospitality, Travel industries were hit with over 63 billion credential stuffing and 4 billion web application attacks in last two years

Cambridge, MA | October 21, 2020

Akamai (NASDAQ: AKAM) the intelligent edge platform for security and delivering digital experiences, today published the State of the Internet / Security report: Loyalty for Sale - Retail and Hospitality Fraud. The report details criminal activity targeting the retail, travel, and hospitality sectors with attacks of all types and sizes between July 2018 and June 2020. The report also includes numerous examples of criminal ads from the darknet illustrating how they cash in on the results from successful attacks and the corresponding data theft.

Criminals are not picky -- anything that can be accessed can be used in some way, said Steve Ragan, Akamai security researcher and author of the State of the Internet / Security report. This is why credential stuffing has become so popular over the past few years. These days, retail and loyalty profiles contain a smorgasbord of personal information, and in some cases financial information too. All of this data can be collected, sold, and traded or even compiled for extensive profiles that can later be used for crimes such as identity theft.

During the COVID-19 pandemic-related lockdowns in Q1 2020, criminals took advantage of the worldwide situation and circulated password combination lists, targeting each of the commerce industries featured in the report. It was during this time that criminals started recirculating old credential lists in an effort to identify new vulnerable accounts, leading to a significant uptick in criminal inventory and sales related to loyalty programs.

Between July 2018 and June 2020, Akamai observed more than 100 billion credential stuffing attacks in total. In the commerce category - comprising the retail, travel, and hospitality industries - there were 63,828,642,449 recorded. More than 90% of the attacks in the commerce category targeted the retail industry.

Credential stuffing isn't the only way that criminals target the retail, travel, and hospitality industries. They target organizations in these industries at the source using SQL Injection (SQLi) and Local File Inclusion (LFI) attacks. Between July 2018 and June 2020, Akamai observed 4,375,711,860 web attacks against retail, travel, and hospitality, accounting for 41% of the overall attack volume across all industries. Within this data set, 83% of those web attacks targeted the retail sector alone. SQLi attacks are an evident favorite among criminals, accounting for just under 79% of the total web application attacks against retail, travel, and hospitality.

As the global economy prepares for a holiday shopping season, it does so in an environment that has changed radically due to the pandemic. Consumers will not be standing outside of brick and mortar stores waiting for the latest deals in the same way they have in the past. They're going to log-in, collect their reward points, and maybe use loyalty programs to gain some discounts or other perks just for being a member.

Considering everything that goes into a successful loyalty program, and the information people need to provide in order to take part, the criminals have everything they need to get started in a number of crime-related ventures, from account takeovers, to straight-up identity theft. So, while an individual's loyalty to a merchant, airline, or hotel chain might not literally be for sale, there's a good chance the account associated with such programs might be.

All businesses need to adapt to external events, whether it's a pandemic, a competitor, or an active and intelligent attacker, Ragan concluded. Some of the top loyalty programs targeted require nothing more than a mobile number and a numeric password, while others rely on easily obtained information as a means of authentication. There is an urgent need for better identity controls and countermeasures to prevent attacks against APIs and server resources.

The Akamai 2020 State of the Internet / Security report, Loyalty for Sale - Retail and Hospitality Fraud is available here. In addition, Akamai will host a webinar on Thursday, October 22 at 11:00 a.m. ET where Akamai security experts discuss the findings of this latest report. To register for the webinar, visit here.

For additional information, the security community can access, engage with, and learn from Akamai's threat researchers and the insight that the Akamai Intelligent Edge Platform affords into the evolving threat landscape, visit Akamai's Threat Research Hub.

About Akamai Akamai secures and delivers digital experiences for the world's largest companies. Akamai's intelligent edge platform surrounds everything, from the enterprise to the cloud, so customers and their businesses can be fast, smart, and secure. Top brands globally rely on Akamai to help them realize competitive advantage through agile solutions that extend the power of their multi-cloud architectures. Akamai keeps decisions, apps and experiences closer to users than anyone - and attacks and threats far away. Akamai's portfolio of edge security, web and mobile performance, enterprise access and video delivery solutions is supported by unmatched customer service, analytics and 24/7/365 monitoring. To learn why the world's top brands trust Akamai, visit www.akamai.com, blogs.akamai.com, or @Akamai on Twitter. You can find our global contact information at www.akamai.com/locations.
LINK: https://www.akamai.com/uk/en/about/news/press/2020-press/state-of-the-...
See more stories from akami

Europe Stories

27/11/2020

VEON confirms Joop Brakenhoff as Group Chief Internal Audit & Compliance Officer

Amsterdam, 26 November 2020 - VEON Ltd. (NASDAQ: VEON, Euronext Amsterdam: VEON), a leading global provider of connectivity and internet services, has promoted...

27/11/2020

Sky Engineers on the road to net zero with arrival of Ford Plug-In Hybrid Electric Vans

151 Ford Transit PHEV's join Sky's commercial fleet New vehicles have ...

27/11/2020

[BLACK FRIDAY] Save 30% on the first payment for all Mistika VR, Boutique and Workflows plans

-- Published On: November 26th, 2020 -- -- width=1920 height=900 class=wp-...

27/11/2020

Schneider Electric Appoints Mark Yeeles as Vice President of Industrial Automation in the UK & Ireland

Schneider Electric Appoints Mark Yeeles as Vice President of Industrial Automati...

27/11/2020

The Wonderful World Of Roald Dahl Unveiled As The Theme For The Late Late Toy Show

In Fox News' Ryan Tubridy set for spectacular opening number as Fantastic...

26/11/2020

Delivering postal users' needs in a digital age

Delivering postal users' needs in a digital age Add to Your Pages 26 November 2020 Royal Mail needs to become more efficient and modernise its parce...

26/11/2020

Nokia provides province-wide 5G private wireless network to Citycom Telecommunication Graz, Austria

Nokia provides province-wide 5G private wireless network to Citycom Telecommunic...

26/11/2020

Nokia Foundation award to Mikko Mttnen for quantum computing research

Nokia Foundation award to Mikko M tt nen for quantum computing research Press Release Nokia Foundation award to Mikko M tt nen for quantum computing researc...

26/11/2020

Im A Celebrity...Get Me Out Of Here! Thursday 26th November preview (video)

Im A Celebrity...Get Me Out Of Here! Thursday 26th November preview (video) Shane Richie and Hollie Arnold were voted by the public to take part in tonights Tr...

26/11/2020

Impartial media is necessary to avoid parallel realities

Impartial media is necessary to avoid parallel realities...

26/11/2020

Dalet Announces New Dalet Brio IP Capabilities

Dalet, a leading provider of solutions and services for broadcasters and content professionals, is providing media companies a smooth transition path to full IP...

26/11/2020

Dalet Helps France Tlvisions Produce News From Home

Dalet, a leading provider of solutions and services for broadcasters and content professionals, today announced that France T l visions has subscribed to Dalet ...

26/11/2020

Introducing Dalet Pyramid

Dalet, a leading technology and service provider for media-rich organizations, today announced Dalet Pyramid, its next generation solution for Unified News Oper...

26/11/2020

An Inside Look at Immersive Audio

Immersive audio pioneer Felix Kr ckels talks to TVBEurope about next generation audio, how to prepare, and how to mix the audio for live broadcasts. By Contrib...

26/11/2020

SOS Tutorials - Black Friday Deal

50% off Black Friday and Cyber Monday Sound On Sound have partnered with NonLinear Educating Inc. (NLE) to deliver a high quality training and learning expe...

26/11/2020

IHSE launches the new Draco tera flex series of KVM matrix switches

IHSE launches the new Draco tera flex series of KVM matrix switches posted: 26/11/2020 The new Draco tera flex matrix switch delivers an even higher level o...

26/11/2020

disguise enables users to train anytime, anywhere with e-learning

disguise enables users to train anytime, anywhere with e-learning posted: 26/11/2020 disguise has recognised the need to take learning online. Users can n...

26/11/2020

Tuning into TV's age gap

Johan Bolin, chief product and technology officer, Edgeware looks at how broadcasters can reach out to a lost generation of viewers. By Contributor Published:...

26/11/2020

UK government creates Global Screen Fund to replace EU funding after Brexit

Pilot scheme will receive 7 million in government funding to support UK TV and film productions. By Jenny Priestley Published: November 26, 2020 Pilot sch...

26/11/2020

Mo-sys Creates Spectacle for Live Music Extravaganza

Mo-sys Creates Spectacle for Live Music Extravaganza posted: 26/11/2020 Little Mix put into virtual stadium setting thanks to precision camera tracking M...

26/11/2020

URSA Broadcast Captures ITV's Love Your Weekend with Alan Titchmarsh

URSA Broadcast Captures ITV's Love Your Weekend with Alan Titchmarsh posted: 26/11/2020 Blackmagic Design today announced that Penny Lane TV, with the...

26/11/2020

Blackmagic Design Announces Blackmagic Video Assist Webcam Update

Blackmagic Design Announces Blackmagic Video Assist Webcam Update posted: 26/11/2020 Adds webcam support to USB connection for use with streaming software...

26/11/2020

El Clsico powered by FootballStats CG

El Cl sico powered by FootballStats CG posted: 26/11/2020 In a joint effort with Mediapro, wTVision designed and implemented a complete Augmented Reality so...

26/11/2020

Storms and Salvation Brought to Life by DiGiCo's SD12 for

Fitting its original theme, the opera production took place on the slipway of Paul Willy Lindenau shipyard complex in Klaip da, with its colossal structures and...

26/11/2020

Videe finds VT to be an easy and efficient way to transport video over IP

Videe finds VT to be an easy and efficient way to transport video over IP posted: 25/11/2020 Paola founded the company together with Bruno Mercuri followi...

26/11/2020

SQ Sets The Pace For World Rowing Championships

SQ Sets The Pace For World Rowing Championships posted: 25/11/2020 An Allen & Heath SQ-5 console was in the thick of the action at the World Rowing Champi...

26/11/2020

LIT Live Keeps the Concert Flame Shining Bright with Avolites

LIT Live Keeps the Concert Flame Shining Bright with Avolites posted: 25/11/2020 Earlier this year, LIT Lighting switched gears to host live-streamed, full-...

26/11/2020

Bandit Lites Delivers Lighting to Socially Distanced Commencements at University of Tennessee

Bandit Lites Delivers Lighting to Socially Distanced Commencements at University...

26/11/2020

Engineering flagship database Inspec reaches milestone 20 million total records

The Institution of Engineering and Technology's (IET) Inspec database has reached over 20 million indexed records throughout its 50-year history.Since Inspe...

26/11/2020

La Reina, la playlist con Clsicos y los Nuevos Hits del Regional Mexicano

El regional mexicano es un t rmino que comprende una familia de g neros, ritmos y tradiciones musicales del pa s como la m sica banda, norte o, mariachi y cumbi...

26/11/2020

Sony Mobile President to give keynote speech at Snapdragon Tech Summit Digital 2020

Mitsuya Kishida, president of Sony Mobile Communications Inc., will provide a ke...

26/11/2020

Sky and Entertainment One sign ground-breaking deal to deliver the best in film to Sky Cinema customers

Deal will include a number of new releases exclusively for Sky Cinema customers ...

25/11/2020

Introducing the Broadcasting Sustainability Network

WATCH the vision of the Network here. The Broadcasting Sustainability Network was officially launched online today by Minister Catherine Martin and brings toge...

25/11/2020

Broadcasters must look beyond London and reach the whole UK

Broadcasters must look beyond London and reach the whole UK Add to Your Pages 25 November 2020 Ofcom calls on industry to reflect wider range of geograp...

25/11/2020

Nokia and stc launch the operation of Technology Innovation Center to stimulate innovation

Nokia and stc launch the operation of Technology Innovation Center to stimulate ...

25/11/2020

Nokia, A1 provide private wireless connectivity for Siemens renewable energy microgrid

Nokia, A1 provide private wireless connectivity for Siemens renewable energy mic...

25/11/2020

Im A Celebrity...Get Me Out Of Here! Wednesday 25th November preview (video)

Im A Celebrity...Get Me Out Of Here! Wednesday 25th November preview (video) Shane Richie and Jessica Plummer were voted by the public to take part in tonights...

25/11/2020

Connecting with young audiences - what works?

Connecting with young audiences - what works?...

25/11/2020

IABM student event with Sound Supervisor Robert Edwards

This week we were delighted to be able to have a fireside chat with top UK sound guru Robert Edwards, who has 46 years of experience as one of the primary mixer...

25/11/2020

Banijay Iberia Appoints New Managing Director for Zeppelin

Banijay today announces the appointment of a new Managing Director at Zeppelin, a Banijay Iberia company. Shifting from within Banijay's exisiting Spanish ...

25/11/2020

2020-11-25

Since Apple announced its new App Store Small Business Program, developers are sharing their positive reactions to the news. Under the new program, which launch...

25/11/2020

Netflix spends $1 billion on UK productions in 2020

Streamer says it intends to invest in the best content in every genre, and are fully committed to supporting British production and creative talent for many yea...

25/11/2020

Canal Plus preparing 700 million Ligue 1 rescue package'

French broadcaster preparing bid in case on-going negotiations between Mediapro and the French football league fail. By Jenny Priestley Published: November 25...

25/11/2020

Ofcom: Women still make up less than half of UK TV and radio industry

Ofcom has called ob broadcasters to accelerate progress across three priority areas. By Jenny Priestley Published: November 25, 2020 Ofcom has called ob br...

25/11/2020

New Vlogger Kit from Rode

Accessory pack for mobile video-making Rode have just released a handy-looking kit that looks ideal for videographers and self-streaming musicians. The apt...

25/11/2020

FOX Deportes Ahead of the Game with Dejero Connectivity in Pioneering Work From Home' Flypacks

FOX Deportes Ahead of the Game with Dejero Connectivity in Pioneering Work From...

25/11/2020

RTVE awards its cloud content management project to VSN

VSNExplorer MAM has once again been the system of choice for RTVE's HUB Innovation project, a pilot program aimed at studying the process of news generation...

25/11/2020

Magyar Telekom concluded a successful bond auction

Magyar Telekom concluded a successful bond auction Budapest, November 24, 2020 15:30 Magyar Telekom (Reuters: MTEL.BU and Bloomberg: MTELEKOM HB, hereinafte...

25/11/2020

Get in the Holiday Spirit with Dolly Parton, Jose Mari Chan, Black Pumas, and More

In a year that's brought unprecedented challenges, Spotify data suggests tha...