There have been around 17 billion cyber attacks in the media industry in two years, which proves how attractive the industry is for malicious activity. According to her research Akamai, between January 2018 and December 2019, 20% of the 88 billion total attacks recorded were against media companies. The company also recorded 630% and 208% annual increases in cyber attacks against broadcast TV and video sites.
Steve Ragan, Akamai security researcher and author of the report State of the Internet / Security, stated that as long as usernames are used and passwords, there will be cybercriminals who will try to breach this information and exploit or steal valuable and confidential information.
Ragan added that password sharing and "recycling" are the two biggest contributors to targeted cyberattacks. credentials. He also noted that while educating consumers about protecting and safeguarding credentials is critical to combating cyberattacks, companies need to develop stronger authentication methods and identify the right combination of technologies and policies. that can help protect customers without adversely affecting the user experience.
Video sites are not the only focus of credentials attacks in the media industry. According to the report, there has been a dramatic increase, by 7000%, in attacks targeting published content. Newspapers, magazines and books are also targeted by cybercriminals, which suggests that such attacks do not discriminate but target media of all kinds.
Alex Guirakhoo, head of the threat research team at Digital Shadows, said the credentials for services video streaming and music are in high demand on cybercrime platforms, with accounts streaming to represent 13% of all entries, while bank accounts accounted for 25% of entries. Accounts are also often exchanged for free at hacking forums, such as XSS and RaidForums, most likely helping to create a sense of community among forum users.
Leo Pate, application security consultant at nVisium, said credential stuffing attacks are easy, risk-free, and yield high ROI if successful. In addition, from a criminal point of view, most platforms media do not offer strong security controls, such as multi-factor authentication, or users simply do not take advantage of such methods security, even if they are available, resulting in a higher rate of successful breaches.
Finally, some media platforms use the same credentials on other platforms, such as Amazon Prime Video and Amazon Prime. Therefore, successful breach of an Amazon Prime Video account may result in a successful breach of an Amazon Prime account. In this way, cybercriminals are given the opportunity to acquire access in even more personal and financial details.