Dunkin Donuts Credential Stuffing Attack

330

Adam Laub, Senior Vice President at STEALTHbits Technologies, points out the lessons to be learned from the recent Dunkin’ Donuts data breach.

Adam Laub, Senior Vice President at STEALTHbits Technologies:

“While unfortunate, the recent incident at Dunkin’ Donuts is an incredible opportunity to educate the masses in a way that may actually make a difference in the future.

The victims of this breach have undoubtedly been warned of the danger of password reuse in the past, but unless you live in the world of cybersecurity, connecting the dots as to why may not be so apparent.  If you use the same password across 100 different sites, and that password it compromised on just one, it is in essence compromised on all of them.

Yes, it’s an inconvenience to have a different password on every site, but only if you’ve required yourself to memorize them.  There are plenty of free options available to the least tech-saavy of us all (e.g. LastPass) that make what happened at Dunkin’ Donuts a non-issue.  But it’s also fair to note that strong, unique passwords are just one tactic out of many that make up a viable strategy for defending one’s identity.

Security isn’t a single thing you do.  It’s a mindset that each of us need to adopt in our not-so-new Information Age.”

In this article