Credential Stuffing Scheme hits Daily Motion

2019, Breaches, January

Who: DailyMotion

What was affected: Customer accounts, usernames, and passwords.

When it happened: January 19, 2019

How it happened: DailyMotion announced on Friday that it was the victim of a credential stuffing attack, Credentials stuffing is a security term that describes a type of cyber-attack where hackers take combinations of usernames and passwords leaked from other sites and use them to gain illegal access on accounts on another site.

Outcome: The company said its security team discovered the attack and it took “all necessary steps” to block it. Since last Saturday, the company has been logging off users who it believes were impacted and resetting their passwords.
The email sent to all affected customers contains a link for users to reset their password and regain control of their account.