Credential Stuffing

Credential Stuffing

Thousands of people across Australia have woken up to the news that they might be victims of ongoing online scams.

Cyber security company, Kasada, has been investigating cyber attacks and found a number of well-known retailers might have been compromised, according to the Sydney Morning Herald.

In their analysis, Kasada alleges some customers of Guzman y Gomez, Dan Murphy’s, Binge, TVSN and Event Cinemas have had their online accounts compromised.

This comes just a week after the news that online retailer, The Iconic had been breached, causing some customers to lose thousands of dollars and have their user details breached.

In these attacks, cyber criminals are using a scam called “credential stuffing” to gain access to an individual’s online account and make fraudulent transactions.

As a small business, if you trade online using an eCommerce store or you purchase online — here’s what you need to know.

What is credential stuffing?

Credential stuffing is a type of cyber attack that targets people who have previously had their usernames, emails or passwords stolen in a data breach. They are then more vulnerable to a second, more dangerous attack where cyber criminals reuse the email and password combinations to get access to more of your accounts, and more of your personal data.

It might help to think of credential stuffing like a cyber criminal game of bingo. Hackers will take your previously stolen passwords and try to crack your other accounts using the same details. This is why people who reuse the same passwords when shopping online are more at-risk of an attack.

What are credential stuffing shopping scams?

When cyber criminals successfully use credential stuffing to guess your password on a online shopping account then they have the ability to place orders, and charge them back to your previously used credit card!

How do I know if my details have been hacked?

Kasada, who has been analysing the attacks, says that 15,000 Australian accounts have been hacked in the past three months, as at January 2023, with that number growing daily.

People who use the same passwords across many accounts are most vulnerable to a credential stuffing cyber attack, especially if they have previously had their usernames stolen in an unrelated data breach.

If you are unsure if you have previously had your data leaked online you can check by visiting the website ‘Have I been pwnd’ which checks your email against known data leaks. If the email you usually shop with is in on this list it means  you can be targeted with a credential stuffing attack.

Because credential stuffing cyber attacks impersonate legitimate shoppers using real passwords and real usernames, it makes it very difficult for online businesses to identify the scam.

While many companies are still learning or investigating the attacks, we encourage you to review your bank statements and look out for any suspicious transactions.

If you think you have been hacked, you can make a report to the ACSC.

https://cyberwardens.com.au/blog/what-is-credential-stuffing/

Take Time Out

Take Time Out

In chatting to many people I have been able to help them identify their basic purpose. It has always been a specialization of the desire to help.

I think the problem is that we are not taught to look for it, to recognize and pursue it. In many cases we are dissuaded from it – “You can’t make enough money doing that!”

If you would like some ideas on how to identify your basic purpose, here’s a blog post I wrote to help you:

How To Work Out Your Basic Purpose In Life

How To Work Out Your Basic Purpose In Life

Merlin On Learning

Merlin On Learning

“The best thing for being sad,” replied Merlin, beginning to puff and blow, “is to learn something. That’s the only thing that never fails. You may grow old and trembling in your anatomies, you may lie awake at night listening to the disorder of your veins, you may miss your only love, you may see the world about you devastated by evil lunatics, or know your honour trampled in the sewers of baser minds. There is only one thing for it then — to learn.
Learn why the world wags and what wags it. That is the only thing which the mind can never exhaust, never alienate, never be tortured by, never fear or distrust, and never dream of regretting. Learning is the only thing for you. Look what a lot of things there are to learn.” – T.H. White, The Once and Future King

(Tom: For an important piece of learning, click the link for a video you need to see!)

https://www.brighteon.com/e4a3efca-35df-4fa1-8498-c91ec9cc33e7

Catherine Austin Fitts – Globalists Plan to Seize Assets Through Invisible Weapons Systems

Catherine Austin Fitts and Maria Zeee

https://www.brighteon.com/e4a3efca-35df-4fa1-8498-c91ec9cc33e7

Catherine Austin-Fitts joins Maria Zeee to expose the globalist tactics to seize your land and assets through invisible weapons systems as we recently saw through Maui, detailing the tactics they will use as they move towards their ultimate goal of the New World Order.

More importantly, Catherine drops some absolute gems of truth bombs that are remarkable in their overarching applicability. Truly strategic rather than tactical. Then she delivers some eminently practical steps we can each take to be the change we wish to see.

~~~~~~~~~~~

14 minutes in she makes the comment about Maui, “Before, during and after, there was an operation. So there is zero chance this is anything other than an intentional, I’ll call it, redevelopment… …This is an act of war.” then goes on the explain the data that leads her to that conclusion.

~~~~~~~~~~~

19:28 “The machinery that is being used to control us is being built by us, we are building and financing the machinery that is doing this… …we’ve been making a nice living building the machinery… …The little secret here is that new solutions are possible if you stop building and supporting the machinery… …We need to stop.”

21:27 “I call it coming clean. So in 1998 I was writing a cheque on a J. P. Morgan Chase private wealth account and my hand froze and I said ‘Why am I banking at the bank, why am I putting my money in financing the bank that is probably going to destroy me and everything else.’ I said, ‘I need to come clean.’ And I started… …to process… …getting all the guys that were doing this out of my life. And it took me two years to get myself and my companies pretty well shifted. The coming clean process is never over because we are so intertwined that you can’t be a professional without this… …and it literally contributed vastly to saving my life because I insisted on trying to build my life around people of integrity or companies of integrity or attracting people of integrity and you got all of the bad guys or a lot of the bad guys out of your life and they’re the ones who steal your life and they’re the ones who steal your money.”

“It’s shocking to me how many people aroung the globe will allow, I mean you wouldn’t let a serial killer into your bedroom, why do you let serial criminals into your money?”

~~~~~~~~~~~

Re Central Bank Digital Currencies, “Essentially what they are moving to do is use digital payment systems to assert total control of transactions and then use that to institute whatever policies they want… …without transaction freedom at an individual or state level, so in a state in the United States if the Bank and the State government and the municipalities and the citizens don’t have liquidity to transact with each other without it being controlled from Washington or Wall Street… …you know you’ve got total control.

“Part of this is that they need to kill cash to do this. There are CBDCs but there’s also payment systems… …What digital technology gives them the ability to do… …is set rules at any kind of jurisdiction level (so it could globally, it could be locally where you set the rules, it could be international it could be the BIS) to set the rules on when and how and where you can use your money. So if I don’t want you to be able to transact beyong 5 kilometers or miles from your homes, you can’t, your money won’t work. So if you’re in a 15 minute city your money will work inside but it won’t work anywhere else… …So they can set very granular rules about… or they can just take your money or freeze it. You know, total (control)… …whatever sanctions they’re doing to Russians or foreigners, domestic terrorists… …so if they don’t want you buying a toothbrush, you can’t buy a toothbrush. We’re talking about a slavery system. It’s not a currency, it’s a control system.”

~~~~~~~~~~~

“The currency of the future will be relationships.”

~~~~~~~~~~~

37:00 “So the questions is, ‘Why would 190 plus (world) leaders go along with something which is horrible for them and their country and their economy?’ Well they would go it because they have a gun at their head. And there are many different guns they can point at their head. So it could be that they have a control file and that’s a gun that’s pointed at their head. They can be promised kickbacks, lots of wonderful benefits and maybe they’re ready to play ball because it’s wonderful for them and their family. They could be doing it because they’ve been threatened with weather warfare or these other invisible weapons.

~~~~~~~~~~~

Re the competition between the London based global financial system and BRICS, both of which are asserting tight central controls to control their citizens, “The debate is not about central controls… …it’s about who’s going to be middle management and there seems to be some real debate about, ‘Are the BRICS going to be under London’s thumb and New York’s thumb or are they going to be their own middle management and so it’s a very consequential economic competition but the coverage of the economic competition is very misleading because a lot of people are looking for hope to come from the BRICS countries and I see no hope coming from the BRICS countries. I see them wanting to be the middle managers in a control system. I assure you that the day should come when they’re the controllers of the G7, we’re all cooked. If you think we’re all cooked now, wait till you see we’re toast when the Chinese are in control.”

~~~~~~~~~~~

They are not arguing for freedom. If you want to have freedom

~~~~~~~~~~~

Catherine observed in large corporations that the internicine warfare between VPs in a company was worse than the competition between the company and its competitors. Such is the case on the international scene at present where national leaders like Putin, Biden and Xi are as VPs on the global stage, fighting for middle management positions underneath what Catherine calls ‘Mr Global’.

Every sovereign leader is in a debt trap and a trade trap. They have to go along with Mr Global. How do they say no to Mr Global?

“A lot of brave politicians who stood up to the machinery they’ve gotten killed or destroyed and to be blunt, their general population in many cases did not support them to the extent that was needed to overcome.”

“That’s why I say you have to stop building the machine, stop financing the machine, stop helping the machine and start to get with people you can trust to build real resiliency.

“Right now the general population is supporting net, net, net with what they finance, what they buy, what they honour, what they watch, what they ingest in terms of entertainment and propaganda, the general population is supporting the bad guys.”

“The general population have to decide…”

~~~~~~~~~~~

“I am an optimist. I thing the global control model will fail, it is so out of alignment with life. My challenge is that if you look at what is going on right now, unless we have a remarkable shift by the general population, the’re going to be able to kill a tremendous number of people before they fail.”

~~~~~~~~~~~

(Tom: This matches my own conclusion when, after each descent down the rabbit hole, I found myself scratching the bottom of the barrel, splinters under my nails, realising there is no way I can survive on my own or with a small or even large group. The only guarantee of survival is if we bring enough of the general population up to a level where they can elect and support sane leaders.)