If you run a service that can be abused like this, you're going to need objectiv... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jeffbee on Aug 29, 2020 \| parent \| context \| favorite \| on: Sendgrid under siege from hacked accounts If you run a service that can be abused like this, you're going to need objective account abuse metrics to warn you before these things happen. Specifically you're going to need a Russian speaker to prowl around on Russian forums buying your own hacked accounts, so you can figure out the market price. If accounts on your system are selling for ten cents, might be time to reflect on account security.

neolog on Aug 29, 2020 [–]

Do big companies actually do this (check market price by buying their own accounts on forums)?

timClicks on Aug 29, 2020 | [–]

Absolutely. Edit: Although it's rarely direct. Normally big corp will engage a security consultancy and discuss type of reconnaissance as one part of a wider strategy.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact