Web Fraud - Password Sharing Across Accounts


This search is used to identify user accounts that share a common password.


Web Fraud - Password Sharing Across Accounts Help

We need to start with a dataset that allows us to see the values of usernames and passwords that users are submitting to the website hosting the Magento2 e-commerce platform (commonly found in the HTTP form_data field). A tokenized or hashed value of a password is acceptable and certainly preferable to a clear-text password. Common data sources used for this detection are customized Apache logs, customized IIS, and Splunk Stream.


Open in Search