Why would an attacker request 100+ password resets at once?

I checked my email today and saw that I got over 100 password reset emails from a website that had a breach several years ago. I'm curious if there is some technique that the attackers might have been using that would cause that. Another interesting detail is that the email address was legit from that site, as was the reset link, but the actual email style and sender were different from when I went and requested one manually.

Touch here for the full post on Network Security Noblemen tumblr

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s