Okta has reported a significant increase in credential stuffing attacks against online services, attributing this surge to the availability of residential proxy services, 'combo lists' of stolen credentials, and scripting tools. Although only a small percentage of these attacks were successful in authenticating credentials, the concern is magnified by the similarities in the attack infrastructure previously identified by Talos. Attack requests were traced back to anonymizing services like TOR and residential proxies, raising the need for stronger security measures such as multi-factor authentication, strong password policies, and monitoring suspicious login behavior to mitigate these risks
The threat landscape is evolving with threat actors exploiting legitimate services like residential proxies, emphasizing the urgency for organizations to enhance their security postures against credential stuffing attacks. https://www.scmagazine.com/news/okta-spots-unprecedented-spike-in-credential-stuffing-attacks