olemus
kasutaja ressursside poole pöördumine
varastatud kontoandmetega
=
automated injection of stolen username and password pairs _

ülevaateid
https://en.wikipedia.org/wiki/Credentialstuffing

https://www.owasp.org/index.php/Credential_stuffing

https://www.imperva.com/learn/application-security/credential-stuffing/

tõrje
https://cheatsheetseries.owasp.org/cheatsheets/Credential_Stuffing_Prevention_Cheat_Sheet.html

https://datadome.co/bot-management-protection/credential-stuffing-credential-cracking-and-account-takeover-how-to-protect-your-e-commerce-website/

https://www.usenix.org/conference/usenixsecurity19/presentation/thomas

https://www.loginradius.com/blog/2019/09/prevent-credential-stuffing-attacks/