Web Fraud - Password Sharing Across Accounts
This search is used to identify user accounts that share a common password.
Web Fraud - Password Sharing Across Accounts Help
We need to start with a dataset that allows us to see the values of usernames and passwords that users are submitting to the website hosting the Magento2 e-commerce platform (commonly found in the HTTP form_data field). A tokenized or hashed value of a password is acceptable and certainly preferable to a clear-text password. Common data sources used for this detection are customized Apache logs, customized IIS, and Splunk Stream.
Open in Search