Credential stuffing attack against RIPE NCC
The RIPE Network Coordination Centre (NCC), which manages the Regional Internet Registry (RIR) for Europe, the Middle East and Central Asia by allocating IP address blocks to internet providers, hosting and organisations, has reported that its Single Sign-O (SSO) service suffered a credential stuffing cyberattack.
The security incident, which occurred in mid-February, affected the availability of the service for some time. According to the preliminary investigation, no SSO accounts were compromised.
The cyberattack has been mitigated and new security measures are being implemented. The company also recommends its users to activate two-factor authentication for RIPE NCC Access accounts in order to prevent future risks.
References:
- 18/02/2021 ripe.net Attack on RIPE NCC Access
- 18/02/2021 bleepingcomputer.com RIPE NCC Internet Registry discloses SSO credential stuffing attack
- 18/02/2021 zdnet.com RIPE NCC discloses failed brute-force attack on its SSO service
- 19/02/2021 infosecurity-magazine.com Internet Registry RIPE NCC Warns of Credential Stuffing Attack