{"id":231049,"date":"2025-12-16T09:30:23","date_gmt":"2025-12-16T09:30:23","guid":{"rendered":"https:\/\/www.intrinsec.com\/?p=231049"},"modified":"2025-12-16T09:36:08","modified_gmt":"2025-12-16T09:36:08","slug":"credential-stuffing","status":"publish","type":"post","link":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/","title":{"rendered":"Credential stuffing"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\" id=\"h-principales-conclusions\">Principales conclusions<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Le \u00ab\u00a0credential stuffing\u00a0\u00bb est une attaque simple mais efficace qui consiste \u00e0 tester massivement des listes d&rsquo;identifiants et mots de passe (ayant fuit\u00e9 d&rsquo;un site A) sur de nombreux autres sites (B, C, D&#8230;).<\/li>\n\n\n\n<li>Son succ\u00e8s repose sur la tendance tr\u00e8s r\u00e9pandue des utilisateurs \u00e0\u00a0<strong>r\u00e9utiliser les m\u00eames mots de passe<\/strong>\u00a0sur diff\u00e9rents services.<\/li>\n\n\n\n<li>L&rsquo;objectif final est le \u00ab\u00a0Mailaccess\u00a0\u00bb, c&rsquo;est-\u00e0-dire la prise de contr\u00f4le de comptes pour des usages vari\u00e9s (fraude, vol de services, usurpation d&rsquo;identit\u00e9, revente de donn\u00e9es).<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">L&rsquo;attaque s&rsquo;articule autour de quatre \u00e9l\u00e9ments principaux :<\/p>\n\n\n\n<ol start=\"1\" class=\"wp-block-list\">\n<li><strong>Logiciel d&rsquo;automatisation<\/strong>\u00a0(ex: SilverBullet).<\/li>\n\n\n\n<li><strong>Combolist<\/strong>\u00a0(la liste d&rsquo;identifiants \u00e0 tester).<\/li>\n\n\n\n<li><strong>Configuration<\/strong>\u00a0(le script indiquant au logiciel comment cibler un site pr\u00e9cis).<\/li>\n\n\n\n<li><strong>Proxys<\/strong>\u00a0(pour masquer l&rsquo;adresse IP de l&rsquo;attaquant).<\/li>\n<\/ol>\n\n\n\n<p class=\"wp-block-paragraph\">Pourquoi cette menace est-elle si r\u00e9pandue ?<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Tr\u00e8s grande accessibilit\u00e9<\/strong>\u00a0: La barri\u00e8re technique pour lancer une attaque est extr\u00eamement faible. Il suffit d&rsquo;assembler les composants.<\/li>\n\n\n\n<li><strong>Processus industrialis\u00e9<\/strong>\u00a0: La facilit\u00e9 d&#8217;emploi des outils et l&rsquo;explosion du nombre de listes d&rsquo;identifiants (notamment via les malwares\u00a0<em>infostealers<\/em>) rendent ces attaques faciles \u00e0 d\u00e9ployer \u00e0 grande \u00e9chelle.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Recommandations de s\u00e9curit\u00e9 pour les entreprises<\/strong><\/p>\n\n\n\n<ol start=\"1\" class=\"wp-block-list\">\n<li><strong>D\u00e9fenses techniques<\/strong>\u00a0: Mettre en place l&rsquo;<strong>authentification \u00e0 double facteur (2FA)<\/strong>\u00a0et des\u00a0<strong>CAPTCHA<\/strong>\u00a0pour bloquer les robots.<\/li>\n\n\n\n<li><strong>D\u00e9tection &amp; Blocage<\/strong>\u00a0: Utiliser des\u00a0<strong>outils d&rsquo;analyse comportementale<\/strong>\u00a0pour rep\u00e9rer les connexions suspectes, ce qui est plus efficace que de simplement bloquer des adresses IP (qui peuvent \u00eatre partag\u00e9es ou appartenir \u00e0 des utilisateurs l\u00e9gitimes infect\u00e9s).<\/li>\n\n\n\n<li><strong>Renseignement sur la Menace (Threat Intelligence)<\/strong>\u00a0:\n<ul class=\"wp-block-list\">\n<li>Surveiller les fuites de donn\u00e9es pour identifier les comptes clients \u00e0 risque.<\/li>\n\n\n\n<li>Connaissance des tendances : infiltrer des groupes d\u00e9di\u00e9s \u00e0 cette fraude, surveiller les marques mentionn\u00e9es et cibl\u00e9es, \u00eatre au fait des derni\u00e8res mises \u00e0 jour de logiciels utilis\u00e9s par les attaquants<\/li>\n\n\n\n<li>Analyser les configurations qui ciblent son propre site pour d\u00e9couvrir des failles.<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Recommandation essentielle pour les utilisateurs<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Varier les mots de passe<\/strong>\u00a0: C&rsquo;est la d\u00e9fense la <a>plus<\/a><a href=\"#_msocom_1\">[MM1]<\/a>\u00a0 efficace. Utiliser un\u00a0<strong>mot de passe unique pour chaque service<\/strong>\u00a0emp\u00eache une fuite sur un site de compromettre les autres comptes. Bien que cette op\u00e9ration puisse para\u00eetre fastidieuse, les gestionnaires de mot de passe permettent de simplifier cette pratique.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-services-cti-d-intrinsec\"><br>Services CTI d&rsquo;Intrinsec<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Les organisations sont confront\u00e9es \u00e0 une sophistication croissante des acteurs malveillants et des techniques d&rsquo;intrusion. Pour faire face \u00e0 ces menaces en constante \u00e9volution, il est d\u00e9sormais n\u00e9cessaire d&rsquo;adopter une approche proactive dans la d\u00e9tection et l&rsquo;analyse de tout \u00e9l\u00e9ment jug\u00e9 malveillant. Une telle approche pratique permet aux entreprises d&rsquo;anticiper, ou du moins de r\u00e9agir le plus rapidement possible aux compromissions auxquelles elles sont confront\u00e9es.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Pour ce rapport, partag\u00e9 avec nos clients en janvier 2025, Intrinsec s&rsquo;est appuy\u00e9 sur son service Cyber Threat Intelligence, qui fournit \u00e0 ses clients des informations \u00e0 forte valeur ajout\u00e9e, contextualis\u00e9es et exploitables pour comprendre et contenir les cybermenaces. Notre \u00e9quipe CTI consolide les donn\u00e9es et les informations recueillies par nos services de surveillance de la s\u00e9curit\u00e9 (SOC, MDR, etc.), notre \u00e9quipe de r\u00e9ponse aux incidents (CERT-Intrinsec) et les renseignements cyber personnalis\u00e9s g\u00e9n\u00e9r\u00e9s par nos analystes \u00e0 l&rsquo;aide d&rsquo;heuristiques personnalis\u00e9es, de honeypots, de chasse, de r\u00e9tro-ing\u00e9nierie et de pivots.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Intrinsec propose \u00e9galement divers services autour du Cyber Threat Intelligence :<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Anticipation des risques : qui peut \u00eatre mise \u00e0 profit pour adapter en permanence les capacit\u00e9s de d\u00e9tection et de r\u00e9ponse des outils existants de nos clients (EDR, XDR, SIEM, &#8230;) gr\u00e2ce \u00e0 :\n<ul class=\"wp-block-list\">\n<li><strong>un flux op\u00e9rationnel d&rsquo;IOC bas\u00e9 sur nos activit\u00e9s exclusives.<\/strong><\/li>\n\n\n\n<li><strong>des notes et rapports de renseignements sur les menaces, conformes \u00e0 la norme TIP.<\/strong><\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>Surveillance des risques num\u00e9riques :\n<ul class=\"wp-block-list\">\n<li><strong>d\u00e9tection et correction des fuites de donn\u00e9es<\/strong><\/li>\n\n\n\n<li><strong>surveillance de la s\u00e9curit\u00e9 des actifs externes (EASM)<\/strong><\/li>\n\n\n\n<li><strong>protection de la marque<\/strong><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Pour plus d&rsquo;informations, rendez-vous sur <a href=\"http:\/\/www.intrinsec.com\/en\/cyber-threat-intelligence\/\">intrinsec.com\/en\/cyber-threat-intelligence\/<\/a>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Suivez-nous sur <a href=\"https:\/\/www.linkedin.com\/company\/intrinsec\/\">Linkedin<\/a> et <a href=\"https:\/\/twitter.com\/Intrinsec\">X<\/a><\/p>\n\n\n\n<div class=\"wp-block-buttons is-layout-flex wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link wp-element-button\" href=\"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/12\/CTI_Intrinsec_Credential_Stuffing.pdf\">T\u00e9l\u00e9charger le rapport complet<\/a><\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Principales conclusions L&rsquo;attaque s&rsquo;articule autour de quatre \u00e9l\u00e9ments principaux : Pourquoi cette menace est-elle si [&hellip;]<\/p>\n","protected":false},"author":53,"featured_media":231058,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9,11],"tags":[160],"class_list":["post-231049","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyber-threat-intelligence","category-threat-intelligence-report","tag-cyber-threat-intelligence"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.9 (Yoast SEO v28.0) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Credential stuffing - INTRINSEC<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Credential stuffing\" \/>\n<meta property=\"og:description\" content=\"Principales conclusions L&rsquo;attaque s&rsquo;articule autour de quatre \u00e9l\u00e9ments principaux : Pourquoi cette menace est-elle si [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/\" \/>\n<meta property=\"og:site_name\" content=\"INTRINSEC\" \/>\n<meta property=\"article:published_time\" content=\"2025-12-16T09:30:23+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-12-16T09:36:08+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/12\/Highlight-1.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1280\" \/>\n\t<meta property=\"og:image:height\" content=\"720\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Adrien ALTOUNIAN\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@Intrinsec\" \/>\n<meta name=\"twitter:site\" content=\"@Intrinsec\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Adrien ALTOUNIAN\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/\"},\"author\":{\"name\":\"Adrien ALTOUNIAN\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#\\\/schema\\\/person\\\/1e91418f194a027629feb7bf7a233a7d\"},\"headline\":\"Credential stuffing\",\"datePublished\":\"2025-12-16T09:30:23+00:00\",\"dateModified\":\"2025-12-16T09:36:08+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/\"},\"wordCount\":682,\"publisher\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.intrinsec.com\\\/wp-content\\\/uploads\\\/2025\\\/12\\\/Highlight-1.png\",\"keywords\":[\"Cyber Threat Intelligence\"],\"articleSection\":[\"Cyber Threat Intelligence\",\"Threat Intelligence Report\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/\",\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/\",\"name\":\"Credential stuffing - INTRINSEC\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.intrinsec.com\\\/wp-content\\\/uploads\\\/2025\\\/12\\\/Highlight-1.png\",\"datePublished\":\"2025-12-16T09:30:23+00:00\",\"dateModified\":\"2025-12-16T09:36:08+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/wp-content\\\/uploads\\\/2025\\\/12\\\/Highlight-1.png\",\"contentUrl\":\"https:\\\/\\\/www.intrinsec.com\\\/wp-content\\\/uploads\\\/2025\\\/12\\\/Highlight-1.png\",\"width\":1280,\"height\":720,\"caption\":\"CTI_Intrinsec_Credential_Stuffing\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/credential-stuffing\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\\\/\\\/www.intrinsec.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Credential stuffing\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#website\",\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/\",\"name\":\"INTRINSEC\",\"description\":\"Notre m\u00e9tier , Prot\u00e9ger le v\u00f4tre\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.intrinsec.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#organization\",\"name\":\"INTRINSEC\",\"alternateName\":\"ISEC\",\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/wp-content\\\/uploads\\\/2025\\\/02\\\/libellule.png\",\"contentUrl\":\"https:\\\/\\\/www.intrinsec.com\\\/wp-content\\\/uploads\\\/2025\\\/02\\\/libellule.png\",\"width\":1322,\"height\":1322,\"caption\":\"INTRINSEC\"},\"image\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/Intrinsec\",\"https:\\\/\\\/fr.linkedin.com\\\/company\\\/intrinsec\",\"https:\\\/\\\/www.youtube.com\\\/channel\\\/UC0trUZAHNZOUbxYnNdecM4A\"],\"description\":\"soci\u00e9t\u00e9 de consulting, pure player cybers\u00e9curit\u00e9 fran\u00e7ais et europ\u00e9en depuis plus de 30ans, sp\u00e9cialiste dans la s\u00e9curit\u00e9 offensive & audit (pentest\\\/red team), GRC, et services IMSS comme le SOC, CTI et CERT Intrinsec est qualifi\u00e9 PASSI Elev\u00e9, PRIS Elev\u00e9 et PACS par l'ANSSI\",\"email\":\"contact@intrinsec.com\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#\\\/schema\\\/person\\\/1e91418f194a027629feb7bf7a233a7d\",\"name\":\"Adrien ALTOUNIAN\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/ddd4a579af0df208ffa1e8df4001e1ae1d485c233ffd767c7ce0e34686545eae?s=96&d=retro&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/ddd4a579af0df208ffa1e8df4001e1ae1d485c233ffd767c7ce0e34686545eae?s=96&d=retro&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/ddd4a579af0df208ffa1e8df4001e1ae1d485c233ffd767c7ce0e34686545eae?s=96&d=retro&r=g\",\"caption\":\"Adrien ALTOUNIAN\"},\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/author\\\/adrien-altounian\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Credential stuffing - INTRINSEC","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/","og_locale":"en_US","og_type":"article","og_title":"Credential stuffing","og_description":"Principales conclusions L&rsquo;attaque s&rsquo;articule autour de quatre \u00e9l\u00e9ments principaux : Pourquoi cette menace est-elle si [&hellip;]","og_url":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/","og_site_name":"INTRINSEC","article_published_time":"2025-12-16T09:30:23+00:00","article_modified_time":"2025-12-16T09:36:08+00:00","og_image":[{"width":1280,"height":720,"url":"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/12\/Highlight-1.png","type":"image\/png"}],"author":"Adrien ALTOUNIAN","twitter_card":"summary_large_image","twitter_creator":"@Intrinsec","twitter_site":"@Intrinsec","twitter_misc":{"Written by":"Adrien ALTOUNIAN","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/#article","isPartOf":{"@id":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/"},"author":{"name":"Adrien ALTOUNIAN","@id":"https:\/\/www.intrinsec.com\/#\/schema\/person\/1e91418f194a027629feb7bf7a233a7d"},"headline":"Credential stuffing","datePublished":"2025-12-16T09:30:23+00:00","dateModified":"2025-12-16T09:36:08+00:00","mainEntityOfPage":{"@id":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/"},"wordCount":682,"publisher":{"@id":"https:\/\/www.intrinsec.com\/#organization"},"image":{"@id":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/12\/Highlight-1.png","keywords":["Cyber Threat Intelligence"],"articleSection":["Cyber Threat Intelligence","Threat Intelligence Report"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/","url":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/","name":"Credential stuffing - INTRINSEC","isPartOf":{"@id":"https:\/\/www.intrinsec.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/#primaryimage"},"image":{"@id":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/12\/Highlight-1.png","datePublished":"2025-12-16T09:30:23+00:00","dateModified":"2025-12-16T09:36:08+00:00","breadcrumb":{"@id":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.intrinsec.com\/en\/credential-stuffing\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/#primaryimage","url":"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/12\/Highlight-1.png","contentUrl":"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/12\/Highlight-1.png","width":1280,"height":720,"caption":"CTI_Intrinsec_Credential_Stuffing"},{"@type":"BreadcrumbList","@id":"https:\/\/www.intrinsec.com\/en\/credential-stuffing\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.intrinsec.com\/"},{"@type":"ListItem","position":2,"name":"Credential stuffing"}]},{"@type":"WebSite","@id":"https:\/\/www.intrinsec.com\/#website","url":"https:\/\/www.intrinsec.com\/","name":"INTRINSEC","description":"Our job is to protect yours.","publisher":{"@id":"https:\/\/www.intrinsec.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.intrinsec.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.intrinsec.com\/#organization","name":"INTRINSEC","alternateName":"ISEC","url":"https:\/\/www.intrinsec.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.intrinsec.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/02\/libellule.png","contentUrl":"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/02\/libellule.png","width":1322,"height":1322,"caption":"INTRINSEC"},"image":{"@id":"https:\/\/www.intrinsec.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/Intrinsec","https:\/\/fr.linkedin.com\/company\/intrinsec","https:\/\/www.youtube.com\/channel\/UC0trUZAHNZOUbxYnNdecM4A"],"description":"Intrinsec, a consulting firm and pure-play French and European cybersecurity provider for over 30 years, specializes in offensive security and auditing (penetration testing\/red teams), GRC, and IMSS services such as SOC, CTI, and CERT. Intrinsec is qualified at PASSI High, PRIS High, and PACS levels by ANSSI.","email":"contact@intrinsec.com"},{"@type":"Person","@id":"https:\/\/www.intrinsec.com\/#\/schema\/person\/1e91418f194a027629feb7bf7a233a7d","name":"Adrien ALTOUNIAN","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/ddd4a579af0df208ffa1e8df4001e1ae1d485c233ffd767c7ce0e34686545eae?s=96&d=retro&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/ddd4a579af0df208ffa1e8df4001e1ae1d485c233ffd767c7ce0e34686545eae?s=96&d=retro&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/ddd4a579af0df208ffa1e8df4001e1ae1d485c233ffd767c7ce0e34686545eae?s=96&d=retro&r=g","caption":"Adrien ALTOUNIAN"},"url":"https:\/\/www.intrinsec.com\/en\/author\/adrien-altounian\/"}]}},"_links":{"self":[{"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/posts\/231049","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/users\/53"}],"replies":[{"embeddable":true,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/comments?post=231049"}],"version-history":[{"count":6,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/posts\/231049\/revisions"}],"predecessor-version":[{"id":231057,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/posts\/231049\/revisions\/231057"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/media\/231058"}],"wp:attachment":[{"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/media?parent=231049"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/categories?post=231049"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/tags?post=231049"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}