[RISK] shodan.io Faces ATO Risks
Summary:The famous cyberspace search engine Shodan faces Account Takeover (ATO) risks, at least 40,000 members have been impacted.
According to the detection by THUD TECHNOLOGY PTE. LTD.(darkweb.vc), the famous cyberspace search engine and Attack Surface Management (ASM) system at https://shodan.io, is facing the risk of Account Takeover (ATO), at least 40,000 users may be impacted, enabling attackers to take control of the accounts of impacted users and gain their privileges.
Furthermore, according to the detection by THUD TECHNOLOGY PTE. LTD.(darkweb.vc), it has been revealed that the majority of other famous cyberspace search engines have the same risk, with their product operators failing to implement effective safeguards against ATO risk.
We recommend notifying the website's members of the leaked login credentials through 'Dark Web Reports', urging them to promptly update their credentials. Regardless of whether 2FA is implemented, securing leaked accounts by locking them and resetting login credentials is a robust security measure. Additionally, it’s advisable to alert affected users to change their passwords immediately. DarkWeb.vc offers highly cost-effective intelligence on login credential leaks to enterprises.