Online retailer PcComponentes says data breach claims are fake

Key Points:

• PcComponentes, a Spanish technology retailer, reported a credential stuffing attack but denied claims of a data breach affecting 16 million customers.
• The attack involved the use of stolen credentials from other breaches, leading to unauthorized attempts to access accounts. No financial data or passwords were compromised, but some customer information was exposed.
• Recommended actions include implementing CAPTCHA on login pages, mandating two-factor authentication (2FA) for all accounts, and advising customers to use strong, unique passwords.

Technical Details: The credential stuffing attack utilized email addresses and passwords sourced from previously compromised databases and info-stealing malware infections. The threat actor 'daghetiaw' claimed to have a database containing 16.3 million records, although PcComponentes refuted this claim.

MITRE ATT&CK Techniques:

• T1078 - Valid Accounts (Defense Evasion)
• T1071.001 - Application Layer Protocol: Web Protocols (Command and Control)

IOCs Mentioned: None mentioned