Web Fraud - Password Sharing Across Accounts
Description
This search is used to identify user accounts that share a common password.
Help |
---|
Web Fraud - Password Sharing Across Accounts HelpWe need to start with a dataset that allows us to see the values of usernames and passwords that users are submitting to the website hosting the Magento2 e-commerce platform (commonly found in the HTTP form_data field). A tokenized or hashed value of a password is acceptable and certainly preferable to a clear-text password. Common data sources used for this detection are customized Apache logs, customized IIS, and Splunk Stream. |
Search |
---|
Open in Search |