search

OWASP / www-community

OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
https://owasp.org/www-community/
1.06k stars 658 forks source link

Update Credential_stuffing.md #967

Closed BababaBlue closed 1 month ago

BababaBlue commented 1 month ago

Added details on how public business information and leak info (such as phone numbers and email addresses) makes it easier for attackers to gather necessary information to reset passwords.

BababaBlue commented 1 month ago

@OWASPFoundation

BababaBlue commented 1 month ago

@kingthorin qq, so it should not be part of credential stuffing for pass reset?

kingthorin commented 1 month ago

I meant just that heading/note about the addition.

BababaBlue commented 1 month ago

@kingthorin hi, is it possible to add name to contributor for this change, no biggie if not :homer-hide:

kingthorin commented 1 month ago

You could open another PR

BababaBlue commented 1 month ago

thanks 👍 ;)