Read Time:1 Minute, 33 Second
Customers are receiving data breach warnings from Gen Digital, previously Symantec Corporation and NortonLifeLock, telling them that hackers used credential-stuffing attacks to access Norton Password Manager accounts successfully.
According to a letter sample given to the Office of the Vermont Attorney General, the attacks resulted from account penetration on other platforms, not a corporation breach.
“Our own systems were not compromised. However, we strongly believe that an unauthorised third party knows and has utilised your username and password for your account,” NortonLifeLock said.
“This username and password combination may potentially also be known to others.”
The notice reveals that sometime around December 1, 2022, an attacker tried to enter Norton customer accounts using a username and password pairs they purchased from the dark web.
On December 12, 2022, the company discovered “an unusually large amount” of unsuccessful login attempts, which indicated a credential stuffing attack in which threat actors test out credentials in mass.
By the time the company had finished its internal investigation on December 22, 2022, it had been discovered that the credential stuffing attacks had successfully compromised an unspecified number of client accounts.
NortonLifeLock said: “In accessing your account with your username and password, the unauthorised third party may have viewed your first name, last name, phone number, and mailing address.”
The company claims that to prevent fraudsters from accessing affected accounts again in the future, it has reset the Norton passwords on those accounts and taken further precautions to thwart the malicious assaults.
Additionally, NortonLifeLock suggests that users set two-factor authentication to safeguard their accounts and accept the offer of a credit monitoring service.
The business has yet to reveal how many people were directly affected by this occurrence.
The recent security breach of Password Manager accounts serves as a stark reminder of the need to take online security seriously.
Happy
0 %
Sad
0 %
Excited
0 %
Sleepy
0 %
Angry
0 %
Surprise
0 %
0
0
