Tag

Credential Theft

Posts exploring how attackers steal usernames, passwords, and authentication tokens through phishing, keylogging, brute force attacks, and credential stuffing. Includes actionable guidance on multi-factor authentication, password managers, and monitoring for compromised credentials.

posts

Cloud Storage Security Risks

Cloud Storage Security Risks: What's Actually Exposing You

The Misconfigured Bucket That Exposed 540 Million Records In 2019, researchers at UpGuard discovered that Facebook user data — over 540 million records — sat exposed on misconfigured Amazon S3 buckets maintained by third-party app developers. Nobody hacked anything. Nobody exploited a zero-day. The data was simply left open to the public

Carl B. Johnson Apr 22, 2025 8 min read
Securing Cloud Applications

Securing Cloud Applications: A Practical 2025 Guide

The Snowflake Breach Changed How I Think About Cloud Risk In mid-2024, threat actors compromised over 165 organizations by exploiting stolen credentials against Snowflake cloud accounts that lacked multi-factor authentication. Ticketmaster, AT&T, Santander — massive names, massive data losses. The root cause wasn't some exotic zero-day. It

Carl B. Johnson Apr 22, 2025 7 min read
Shoulder Surfing Attack

Shoulder Surfing Attack: The Low-Tech Threat That Still Works

In 2023, a Ponemon Institute study sponsored by 3M found that 91% of visual hacking attempts — someone simply looking at a screen — were successful. No malware. No zero-day exploit. No phishing email. Just a person standing in the right place at the right time, reading credentials off someone else'

Carl B. Johnson Apr 20, 2025 7 min read
Cyber Hygiene Checklist

Cyber Hygiene Checklist: 12 Steps That Actually Work

The Breach That Started With a Reused Password In January 2024, Microsoft disclosed that a Russian threat actor group known as Midnight Blizzard compromised executive email accounts — not through some exotic zero-day, but by password spraying a legacy test account that lacked multi-factor authentication. One overlooked account. No MFA. That&

Carl B. Johnson Mar 17, 2025 7 min read
Dark Web Monitoring

Dark Web Monitoring for Businesses: A Practical Guide

In February 2024, a threat actor going by "USDoD" listed 2.9 billion records from National Public Data on a dark web forum — records that included Social Security numbers, full names, and addresses of nearly every American adult. The breach didn't make mainstream headlines until months

Carl B. Johnson Feb 28, 2025 8 min read
Dark Web

What Is the Dark Web? A Security Pro's Real-World Guide

Your Stolen Password Is Already For Sale Somewhere In January 2024, a dataset called "Naz.API" surfaced on dark web forums containing over 70 million unique email addresses paired with plaintext passwords. The data had been harvested from credential-stealing malware installed on everyday people's computers. If

Carl B. Johnson Feb 28, 2025 7 min read
Stolen Credentials Dark Web

Stolen Credentials Dark Web: What You Must Know in 2025

Your Employees' Passwords Are Probably Already for Sale In January 2024, researchers discovered a file called "Naz.API" circulating on dark web forums containing over 71 million unique email addresses paired with plaintext passwords — many harvested by credential-stealing malware. That's not a hypothetical. That'

Carl B. Johnson Feb 28, 2025 7 min read