Cyber Security Risk Alert: "Credential Stuffing" From The (OCIE)

The Office of Compliance Inspections and Examinations has issued a risk alert for "credential stuffing". This is a method of cyber-attack on client accounts that uses compromised client login credentials, resulting in the possible loss of customer assets and unauthorized disclosure of sensitive personal information. The PDF file attached gives and overview of such attacks as well as information on how a firm can protect it's clients information.

Download PDF • 280KB