The volume of breach data, or exposed user credentials, has significantly increased in recent years. The recent CompilationOfManyBreaches (COMB) breach was discovered in February 2021 and contains more than 3 billion unique sets of stolen user credentials. The name of the breach file is accurate in that it contains breach data from numerous historical and recent data breaches all combined into one dataset.
While the risk associated with historical passwords is lower, users often re-use passwords (especially more complex passwords) which means an attacker with this data would have a significant advantage in a cyber attack. There are many uses for stolen credentials including credential stuffing attacks, business email compromises (BEC), extortion and...
Read the full report here: IR-21-134-001-CompilationOfManyBreaches (COMB).pdf
Comments