In early 2020, attackers compromised over 160,000 Nintendo accounts via credential stuffing. SpyCloud researchers discovered source code for one account checker tool that was custom-built to help criminals test stolen credentials against Nintendo logins, enabling attackers to access customer accounts and exploit saved payment methods to purchase in-game currency.

With so many people stuck at home, popular consumer services like Nintendo are facing high demand – from both legitimate customers and cybercriminals. Sophisticated crimeware makes it easy for criminals to target these types of organizations in credential stuffing attacks and defraud their customers. To protect consumers from account takeover, enterprises need to take proactive measures.

View this on-demand webinar to learn:

• How credential stuffing works, from the lifecycle of stolen credentials to the crimeware attackers use to automate account takeover
• Why stolen accounts that don’t have obvious monetary value can be profitable for cybercriminals
• How credential stuffing and account takeover fit into the broader criminal economy
• What your enterprise can do to combat both credential stuffing and more advanced types of account takeover attacks