In a world of smart-enabled devices — smartphones, smart TVs, smart assistants, even smart cars — passwords are the most common way hackers use to compromise accounts and access personal data.
Credential stuffing is a type of cyberattack in which stolen account credentials, typically consisting of lists of usernames and/or email addresses and the corresponding passwords (often from a data breach), are used to gain unauthorized access to user accounts through large-scale automated login requests directed against a web application.*
In reality, this is a very simple hacker technique. Consider the scenario below:
Do not use the same password in different websites of personal and professional interest. Use a unique password for Cathay Bank, not equal or similar to any you use in other websites.
Whenever possible, create different passwords on websites with different contexts, especially those that may affect your finances. Banks usually require step-up authentication when an unusual transaction is detected, a new device is used or the type of activity and/or amount requested does not match the customer’s profile.
This is commonly performed with an additional code sent to the user’s cellphone. Do not provide this code to anyone; it is meant to be used on computer systems.
Please do not include sensitive information such as account numbers or other personal information such as Social Security or Tax Identification numbers, driver’s license numbers, etc. in any email sent to us via this link.