Hope this isn’t a repeated submission. Funny how they’re trying to deflect blame after they tried to change the EULA post breach.

  • sudneo@lemmy.world
    link
    fedilink
    English
    arrow-up
    3
    ·
    11 months ago

    If the accounts were logged into from geographically similar locations at normal volumes then it wouldn’t look too out of the ordinary.

    I mean, device fingerprinting is used for this purpose. Then there is the geographic pattern, the IP reputation etc. Any difference -> ask MFA.

    It’s so difficult that most companies tend to just defer to large players like Google and Microsoft to do this for them.

    Cloudflare, Imperva, Akamai I believe all offer these services. These are some of the players who can help against this type of attack, plus of course in-house tools. If you decide to collect sensitive data, you should also provide appropriate security. If you don’t want to pay for services, force MFA at every login.