Account takeover is a form of identity theft where attackers obtain the login credentials of a legitimate account. It may lead to the misuse of sensitive information like email addresses, bank accounts or social media profiles.

Infographic - How to prevent account takeovers 2021
Download Infographic

Download and share the infographic for free with employees

How does this happen?

  1. Brute force attacks
    By using automated scripts, the attacker attempts multiple username/password combinations across multiple accounts until one works.
  2. Phishing
    Phishing remains an effective way to get a victim’s password. In the absence of controls such as Multi-factor Authentication (MFA), lost credentials can lead to compromised accounts.
  3. Malware attacks
    By installing malicious software on a victim’s computer or mobile device, attackers gain access to their accounts, thus exposing user credentials.

How to stay safe from account takeovers?

  • Never click on suspicious links or attachments received in emails.
  • Set up strong and unique passwords for each of your accounts and never share them with anyone.
  • Use Multi-factor Authentication (MFA) for your accounts. MFA will fortify your online accounts by enabling stronger authentication.