<?xml version="1.0" encoding="utf-8"?>
<rss version="2.0"><channel><title>Peakhour.IO - Credential Stuffing</title><link>https://www.peakhour.io/</link><description></description><lastBuildDate>Fri, 19 Jun 2026 00:00:00 +1000</lastBuildDate><item><title>The Real Cost of Breached Credentials</title><link>https://www.peakhour.io/blog/cost-of-breached-credentials/</link><description>&lt;p&gt;Breached credentials keep creating cost after the original breach. They feed credential stuffing, account takeover, fraud, support, and reputation costs across login, recovery, checkout, and API flows.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/cost-of-breached-credentials/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Breached Credentials</category><category>Fraud Prevention</category><category>Bot Management</category><category>API Security</category><category>Residential Proxies</category></item><item><title>Credential Stuffing Does Not Stop at the Login Form</title><link>https://www.peakhour.io/blog/credential-stuffing-after-the-login/</link><description>&lt;p&gt;Credential stuffing risk continues after a password works. Account protection needs to watch password reset, email change, stored payment, gift card, and checkout flows.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/credential-stuffing-after-the-login/</guid><category>API Security</category><category>API Security</category><category>Account Protection</category><category>Credential Stuffing</category><category>Bot Management</category><category>Breached Credentials</category><category>Fraud Prevention</category></item><item><title>Agentic AI vs. Your API</title><link>https://www.peakhour.io/blog/agentic-ai-vs-your-api/</link><description>&lt;p&gt;Understand the shift from scripted bots to reasoning AI agents and how to adapt your security strategy for this new reality.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 01 Sep 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-09-01:/blog/agentic-ai-vs-your-api/</guid><category>AI</category><category>Bot Management</category><category>API Security</category><category>Threat Detection</category><category>DevSecOps</category><category>Machine Learning</category><category>Credential Stuffing</category></item><item><title>Anatomy of a Credential Stuffing Attack</title><link>https://www.peakhour.io/blog/anatomy-of-a-credential-stuffing-attack/</link><description>&lt;p&gt;A deep dive into how credential stuffing attacks work, the tools used, and how to build a multi-layered defense.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 01 Sep 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-09-01:/blog/anatomy-of-a-credential-stuffing-attack/</guid><category>Security</category><category>Credential Stuffing</category><category>Account Protection</category><category>Fraud Prevention</category><category>Residential Proxies</category><category>DNS</category><category>Threat Detection</category></item><item><title>The Invisibility Cloak</title><link>https://www.peakhour.io/blog/bots-residential-proxies-anti-detect-browsers/</link><description>&lt;p&gt;Learn how attackers combine residential proxies and anti-detect browsers to evade detection and how modern security tools can fight back.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 01 Sep 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-09-01:/blog/bots-residential-proxies-anti-detect-browsers/</guid><category>Security</category><category>Browser Fingerprinting</category><category>Fingerprinting</category><category>Residential Proxies</category><category>Bot Management</category><category>TLS Fingerprinting</category><category>Credential Stuffing</category></item><item><title>The CAPTCHA Conundrum</title><link>https://www.peakhour.io/blog/captcha-conundrum-frustrating-humans-easy-for-bots/</link><description>&lt;p&gt;Explore why traditional CAPTCHAs are failing both users and security, and discover modern, invisible alternatives.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 01 Sep 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-09-01:/blog/captcha-conundrum-frustrating-humans-easy-for-bots/</guid><category>Bots</category><category>Bot Management</category><category>Credential Stuffing</category><category>Account Protection</category></item><item><title>Key Considerations for Effective Bot Management</title><link>https://www.peakhour.io/blog/key-considerations-effective-bot-management/</link><description>&lt;p&gt;With nearly half of all internet traffic being automated, a robust bot management strategy is essential. This article explores the key considerations for effective bot detection, classification, and response in the face of evolving threats.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 01 Sep 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-09-01:/blog/key-considerations-effective-bot-management/</guid><category>Bots</category><category>Bot Management</category><category>Threat Detection</category><category>API Security</category><category>Residential Proxies</category><category>Credential Stuffing</category><category>Account Protection</category></item><item><title>How to Use Bot Management for IAM Use Cases</title><link>https://www.peakhour.io/blog/bot-management-for-iam-use-cases/</link><description>&lt;p&gt;Bots are part of account takeover, fraud, scraping, and other abuse. Identity and access management leaders need a clear business case for bot management, or their organisations face avoidable account takeover losses and will be less prepared for the risks introduced when customers use AI agents.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 20 Aug 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-08-20:/blog/bot-management-for-iam-use-cases/</guid><category>Security</category><category>Bot Management</category><category>Account Protection</category><category>Credential Stuffing</category><category>API Security</category><category>Threat Detection</category><category>Fraud Prevention</category></item><item><title>Protecting Against a Share Point Zero Day Vulnerability with Network Fingerprinting</title><link>https://www.peakhour.io/blog/protecting-against-share-point-zero-day/</link><description>&lt;p&gt;Analysis of attempts to exploit a recent Share Point zero day vulnerability reveal network fingerprinting and classification is a robust defense.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Wed, 23 Jul 2025 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-07-23:/blog/protecting-against-share-point-zero-day/</guid><category>Security</category><category>Threat Detection</category><category>Credential Stuffing</category><category>Account Protection</category><category>DevSecOps</category><category>DDoS</category><category>Application Security</category></item><item><title>A Complete Guide to SMS Pumping Fraud</title><link>https://www.peakhour.io/blog/sms-pumping-fraud-business-impact-protection/</link><description>&lt;p&gt;SMS pumping fraud cost businesses $6.7 billion in 2021. Learn how these sophisticated attacks work, which companies face the highest risk, and the most effective protection strategies.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Thu, 13 Mar 2025 14:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-03-13:/blog/sms-pumping-fraud-business-impact-protection/</guid><category>Fraud</category><category>Fraud Prevention</category><category>Account Protection</category><category>Residential Proxies</category><category>Credential Stuffing</category><category>Bot Management</category><category>DDoS</category></item><item><title>Why We Can't Trust IP Addresses</title><link>https://www.peakhour.io/blog/residential-proxies-trust-issues/</link><description>&lt;p&gt;The proliferation of residential proxy networks has undermined traditional IP-based security, enabling attackers to bypass protection measures while appearing as legitimate users.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 11 Mar 2025 14:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-03-11:/blog/residential-proxies-trust-issues/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>DDoS</category><category>Credential Stuffing</category><category>DNS</category><category>Threat Detection</category><category>Account Protection</category></item><item><title>Data-Driven Risk Management</title><link>https://www.peakhour.io/blog/data-driven-risk-management-contextual-security/</link><description>&lt;p&gt;How Peakhour's contextual security aligns with Visa's data-driven risk management approach in the 2025-2028 Security Roadmap.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 07 Feb 2025 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-02-07:/blog/data-driven-risk-management-contextual-security/</guid><category>Account Protection</category><category>Account Protection</category><category>Application Security</category><category>Credential Stuffing</category><category>API Security</category><category>Threat Detection</category><category>PCI DSS</category></item><item><title>Why Reasoning Models Like DeepSeek Change Everything</title><link>https://www.peakhour.io/blog/agentic-ai-deepseek-changes-everything/</link><description>&lt;p&gt;How open reasoning models transform automation from rigid scripts to autonomous agents, fundamentally changing our approach to security and digital interactions.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 03 Feb 2025 08:13:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-02-03:/blog/agentic-ai-deepseek-changes-everything/</guid><category>Security</category><category>DevSecOps</category><category>Bot Management</category><category>Credential Stuffing</category><category>Machine Learning</category></item><item><title>Preventing Enumeration Attacks</title><link>https://www.peakhour.io/blog/preventing-enumeration-attacks-visa-roadmap/</link><description>&lt;p&gt;An analysis of how Peakhour's solutions help prevent enumeration attacks, aligning with Visa's Security Roadmap 2025-2028 priorities.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 24 Jan 2025 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-01-24:/blog/preventing-enumeration-attacks-visa-roadmap/</guid><category>Security</category><category>Account Protection</category><category>Credential Stuffing</category><category>PCI DSS</category><category>API Security</category><category>Fraud Prevention</category><category>Threat Detection</category></item><item><title>Visa's Security Roadmap 2025-2028</title><link>https://www.peakhour.io/blog/visa-security-roadmap-2025-overview/</link><description>&lt;p&gt;An analysis of Visa's Security Roadmap 2025-2028 and how Peakhour's solutions help Australian businesses meet these security objectives.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 21 Jan 2025 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-01-21:/blog/visa-security-roadmap-2025-overview/</guid><category>Fraud</category><category>PCI DSS</category><category>Account Protection</category><category>Credential Stuffing</category><category>Fraud Prevention</category><category>Magento</category><category>Application Security</category></item><item><title>How Bots Are Corrupting Your A/B Testing Data</title><link>https://www.peakhour.io/blog/bot-impact-ab-testing/</link><description>&lt;p&gt;Understand the impact of bot traffic on A/B testing results and learn how to protect your optimization efforts&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 20 Jan 2025 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-01-20:/blog/bot-impact-ab-testing/</guid><category>Fraud</category><category>Bot Management</category><category>Residential Proxies</category><category>Fraud Prevention</category><category>Credential Stuffing</category></item><item><title>The Hidden Cost of Click Fraud</title><link>https://www.peakhour.io/blog/protecting-against-click-fraud/</link><description>&lt;p&gt;Click fraud drains marketing budgets and corrupts campaign data. Learn how bots and residential proxies impact your ad spend and marketing strategy.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Tue, 14 Jan 2025 13:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-01-14:/blog/protecting-against-click-fraud/</guid><category>Fraud</category><category>Fraud Prevention</category><category>Bot Management</category><category>Credential Stuffing</category><category>Residential Proxies</category><category>Analytics</category><category>Account Protection</category></item><item><title>Residential Proxies - The Growing Threat to Ad Campaigns</title><link>https://www.peakhour.io/blog/residential-proxy-ad-fraud/</link><description>&lt;p&gt;Learn how distributed bot networks using residential IPs are evolving to evade traditional fraud detection&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 30 Dec 2024 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-12-30:/blog/residential-proxy-ad-fraud/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Bot Management</category><category>Threat Detection</category><category>Fraud Prevention</category><category>Credential Stuffing</category><category>DDoS</category></item><item><title>Your Anti-Fraud Residential Proxy Detection Sucks</title><link>https://www.peakhour.io/blog/anti-fraud-residential-proxy-detection/</link><description>&lt;p&gt;Your anti fraud IP Intelligence service is no longer fit for purpose. Learn about the challenges in detecting residential proxies and why traditional methods don't work.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Fri, 04 Oct 2024 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-10-04:/blog/anti-fraud-residential-proxy-detection/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Fraud Prevention</category><category>Threat Detection</category><category>Credential Stuffing</category><category>DNS</category><category>Account Protection</category></item><item><title>Managing Bots For Application Security</title><link>https://www.peakhour.io/blog/enterprise-bot-management-application-security/</link><description>&lt;p&gt;Comprehensive guide to enterprise bot management for modern application security platforms. Learn how to protect applications and APIs from sophisticated bot threats including anti-detect browsers, credential stuffing, and automated attacks targeting DevOps environments.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Sun, 15 Sep 2024 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-09-15:/blog/enterprise-bot-management-application-security/</guid><category>Bots</category><category>Bot Management</category><category>API Security</category><category>Credential Stuffing</category><category>Account Protection</category><category>DevSecOps</category><category>Application Security</category></item><item><title>Application Security for Financial Services Under CPS 234</title><link>https://www.peakhour.io/blog/credential-stuffing-defence-cps-234-compliance/</link><description>&lt;p&gt;Comprehensive analysis of credential stuffing threats against Australian financial institutions and how application security platforms help meet CPS 234 disclosure requirements whilst preventing account takeover attacks.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Mon, 29 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-29:/blog/credential-stuffing-defence-cps-234-compliance/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Fraud Prevention</category><category>Application Security</category><category>DevSecOps</category><category>PCI DSS</category></item><item><title>The Australian epidemic of Account Takeover attacks</title><link>https://www.peakhour.io/blog/credential-stuffing-threat-australian-businesses/</link><description>&lt;p&gt;An in-depth look at the growing threat of credential stuffing attacks on Australian businesses, including recent case studies, defense challenges, and practical recommendations.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 29 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-29:/blog/credential-stuffing-threat-australian-businesses/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Fraud Prevention</category><category>Residential Proxies</category><category>Threat Detection</category><category>DNS</category></item><item><title>The Challenge of Proxy Detection</title><link>https://www.peakhour.io/blog/proxy-detection-challenges-existing-solutions/</link><description>&lt;p&gt;Examine why current security solutions fail to detect and mitigate threats from residential proxies, and the need for comprehensive protection strategies.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-19:/blog/proxy-detection-challenges-existing-solutions/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Bot Management</category><category>Credential Stuffing</category><category>Account Protection</category><category>API Security</category><category>Threat Detection</category></item><item><title>Quantifying The Residential Proxy Threat</title><link>https://www.peakhour.io/blog/residential-proxy-detection-quantifying-hidden-threat/</link><description>&lt;p&gt;Explore the complexities of residential proxy detection and its impact on organisational risk, with a focus on quantifying the threat and reframing security approaches.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Thu, 18 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-18:/blog/residential-proxy-detection-quantifying-hidden-threat/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Threat Detection</category><category>Credential Stuffing</category><category>Account Protection</category><category>DDoS</category><category>Bot Management</category></item><item><title>Account Protection and User Experience in Web Applications</title><link>https://www.peakhour.io/blog/frictionless-customer-experiences/</link><description>&lt;p&gt;Explore strategies to enhance web application security without compromising user experience, focusing on contextual security and adaptive authentication measures.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-17:/blog/frictionless-customer-experiences/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Application Security</category><category>Fraud Prevention</category><category>API Security</category><category>Magento</category></item><item><title>The Cost of Credential Stuffing</title><link>https://www.peakhour.io/blog/credential-stuffing-business-impact/</link><description>&lt;p&gt;Explore how credential stuffing attacks and account takeovers affect business reputation and customer trust.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 Jul 2024 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-17:/blog/credential-stuffing-business-impact/</guid><category>Account Protection</category><category>Credential Stuffing</category><category>Account Protection</category><category>Fraud Prevention</category><category>Residential Proxies</category><category>DNS</category><category>Magento</category></item><item><title>2024 Survey Insights</title><link>https://www.peakhour.io/blog/credential-stuffing-and-account-takeover-survey-2024/</link><description>&lt;p&gt;Our 2024 survey of Australian CISOs and CTOs looks at how businesses are approaching account protection, particularly credential stuffing and residential proxies.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 16 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-16:/blog/credential-stuffing-and-account-takeover-survey-2024/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Residential Proxies</category><category>API Security</category><category>Bot Management</category><category>DevSecOps</category></item><item><title>2024 Survey Insights</title><link>https://www.peakhour.io/blog/credential-stuffing-and-account-takeover-survey-2024-full/</link><description>&lt;p&gt;Survey data from Australian CISOs and CTOs shows broad MFA adoption, lower bot protection uptake, and early attention on residential proxy detection for credential stuffing and account takeover risk.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 16 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-16:/blog/credential-stuffing-and-account-takeover-survey-2024-full/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Residential Proxies</category><category>API Security</category><category>Fraud Prevention</category><category>Bot Management</category></item><item><title>Application Security Beyond MFA</title><link>https://www.peakhour.io/blog/why-mfa-is-an-incomplete-defence/</link><description>&lt;p&gt;MFA helps, but it does not stop social engineering, residential proxy abuse, credential stuffing, or session risk on its own.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 15 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-15:/blog/why-mfa-is-an-incomplete-defence/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Bot Management</category><category>API Security</category><category>Residential Proxies</category><category>Threat Detection</category></item><item><title>Managing Breached Credential Usage</title><link>https://www.peakhour.io/blog/breached-credentials-protection-application-security-platform/</link><description>&lt;p&gt;How breached credential checks and risk signals help detect credential stuffing without adding unnecessary login friction.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 15 Mar 2024 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-03-15:/blog/breached-credentials-protection-application-security-platform/</guid><category>Account Protection</category><category>Credential Stuffing</category><category>Account Protection</category><category>DevSecOps</category><category>Application Security</category><category>Threat Detection</category><category>API Security</category></item><item><title>The Iconic is the latest Account Takeover victim in the news</title><link>https://www.peakhour.io/blog/account-takeover-fraud-theiconic/</link><description>&lt;p&gt;Popular Australian fashion website TheIconic recently suffered reputational damage from fraudsters placing orders after an account takeover. Learn how this happens and what you can do to stop it.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Mon, 15 Jan 2024 13:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-01-15:/blog/account-takeover-fraud-theiconic/</guid><category>Security</category><category>Account Protection</category><category>Credential Stuffing</category></item><item><title>HTTP Security Headers</title><link>https://www.peakhour.io/blog/http-security-headers-web-application-protection/</link><description>&lt;p&gt;Comprehensive guide to HTTP security headers for protecting web applications from client-side attacks. Learn essential browser security configurations for modern application security platforms and DevSecOps workflows.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 28 Nov 2023 14:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-11-28:/blog/http-security-headers-web-application-protection/</guid><category>Security</category><category>Application Security</category><category>Account Protection</category><category>API Security</category><category>Credential Stuffing</category><category>Drupal</category><category>DDoS</category></item><item><title>Dive into CVSS Scores</title><link>https://www.peakhour.io/blog/confluence-cvss-vectors/</link><description>&lt;p&gt;Understand CVSS by examining the Atlassian CVE-2023-22515 and CVE-2023-22518.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 10 Nov 2023 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-11-10:/blog/confluence-cvss-vectors/</guid><category>Interest</category><category>Threat Detection</category><category>DevSecOps</category><category>Application Security</category><category>Anomaly Detection</category><category>Credential Stuffing</category><category>Core Web Vitals</category></item><item><title>A Risk Based Approach To Vulnerability Scoring</title><link>https://www.peakhour.io/blog/epss-explained/</link><description>&lt;p&gt;An in-depth exploration of EPSS, its data-driven approach to assessing cybersecurity threats, and how it complements CVSS.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 10 Nov 2023 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-11-10:/blog/epss-explained/</guid><category>Interest</category><category>Threat Detection</category><category>Application Security</category><category>DevSecOps</category><category>Anomaly Detection</category><category>DDoS</category><category>Credential Stuffing</category></item><item><title>A Tale Of Two Scoring Systems</title><link>https://www.peakhour.io/blog/a-tale-of-two-scoring-systems-and-atlassian-confluence/</link><description>&lt;p&gt;Reviewing the CVSS an EPSS CVE scoring systems in light of the Atlassian Confluence-Aggedon&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 08 Nov 2023 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-11-08:/blog/a-tale-of-two-scoring-systems-and-atlassian-confluence/</guid><category>Security</category><category>Credential Stuffing</category><category>Threat Detection</category><category>Account Protection</category><category>DevSecOps</category><category>SOC 2</category></item><item><title>The Rise of OpenBullet</title><link>https://www.peakhour.io/blog/the-rise-of-openbullet/</link><description>&lt;p&gt;A comprehensive look at OpenBullet, its capabilities, and the implications for cybersecurity in the face of its misuse.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 01 Sep 2023 14:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-09-01:/blog/the-rise-of-openbullet/</guid><category>Security</category><category>Bot Management</category><category>Application Security</category><category>DevSecOps</category><category>Account Protection</category><category>Credential Stuffing</category><category>Threat Detection</category></item><item><title>The Rise of the Dragon</title><link>https://www.peakhour.io/blog/camaro-dragon-malware/</link><description>&lt;p&gt;Residential proxy malware, and its implications for traditional cybersecurity measures, emphasising the need for evolving threat detection and mitigation strategies.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 May 2023 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-05-17:/blog/camaro-dragon-malware/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Threat Detection</category><category>Account Protection</category><category>Credential Stuffing</category><category>DDoS</category><category>Bot Management</category></item><item><title>Residential Proxies and MITRE Framework</title><link>https://www.peakhour.io/blog/residential-proxies-mitre-framework/</link><description>&lt;p&gt;Explore residential proxies within the context of the MITRE ATT&amp;amp;CK framework, highlighting the security implications and ethical considerations.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 May 2023 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-05-17:/blog/residential-proxies-mitre-framework/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Account Protection</category><category>Credential Stuffing</category><category>Threat Detection</category><category>DDoS</category><category>DevSecOps</category></item><item><title>Residential Proxy Detection</title><link>https://www.peakhour.io/blog/residential-proxies-unseen-challenges/</link><description>&lt;p&gt;Comprehensive analysis of residential proxy threats and detection strategies for modern application security platforms. Learn how sophisticated threat actors use residential proxies to bypass traditional security measures.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 May 2023 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-05-17:/blog/residential-proxies-unseen-challenges/</guid><category>Threat Intelligence</category><category>Residential Proxies</category><category>Bot Management</category><category>Threat Detection</category><category>Account Protection</category><category>Credential Stuffing</category><category>DDoS</category></item><item><title>CVE-2022-26134</title><link>https://www.peakhour.io/blog/cve202226134-atlassian-confluence/</link><description>&lt;p&gt;Peakhour clients are protected against CVF-2022-26134 Atlassian Confluence RCE&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Thu, 02 Jun 2022 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2022-06-02:/blog/cve202226134-atlassian-confluence/</guid><category>Security</category><category>API Security</category><category>DDoS</category><category>Rate Limiting</category><category>Application Security</category><category>Credential Stuffing</category><category>Features</category></item><item><title>Why Manage Bots?</title><link>https://www.peakhour.io/blog/bad-bot-countermeasures/</link><description>&lt;p&gt;Comprehensive guide to enterprise bot management and advanced countermeasures for protecting applications against sophisticated malicious bot threats. Learn proven strategies for bot detection, mitigation, and automated defence systems.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 30 Nov 2020 13:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2020-11-30:/blog/bad-bot-countermeasures/</guid><category>Bots</category><category>Bot Management</category><category>DDoS</category><category>API Security</category><category>Threat Detection</category><category>Residential Proxies</category><category>Credential Stuffing</category></item><item><title>Malicious Bot Threats</title><link>https://www.peakhour.io/blog/malicious-bot-threats-enterprise-application-security/</link><description>&lt;p&gt;Comprehensive analysis of malicious bot threats targeting modern applications and APIs. Learn how enterprise bot management protects against automated attacks, credential stuffing, price scraping, and sophisticated bot-driven financial damage.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 12 Aug 2020 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2020-08-12:/blog/malicious-bot-threats-enterprise-application-security/</guid><category>Bots</category><category>Bot Management</category><category>Credential Stuffing</category><category>API Security</category><category>Account Protection</category><category>Residential Proxies</category><category>Fraud Prevention</category></item></channel></rss>