Skip to content Skip to navigation Skip to footer

FortiGuard Credential Stuffing Defense

Block Attacks Using Stolen Credentials

Attackers have easy access to millions of compromised user credentials from various sources on the dark net. Using these credentials in combination with simple botnets, they are able to initiate attacks that test the validity of username and password combinations on a website. If a credential is still active, the attacker is able to gain access to perform a variety of malicious activities including the theft of personal and payment information.

Fortinet’s Credential Stuffing Defense identifies login attempts using credentials that have been compromised using an always up-to-date feed of stolen credentials. Administrators can configure their supported devices to take various actions if a suspicious login is used including logging, alerts, and blocking.

FortiGuard Credential Stuffing Defense is available for use with the FortiWeb Web Application Firewall solutions.


FortiGuard Credential Stuffing Defense:


defense icon

Identifies login attempts using stolen credentials from numerous sources

icon benefits secure choice

Customizable controls provide visibility and can block access

Compliance icon

Always up-to-date with regular automatic downloads

ddos icon

Prevents unwanted access and defends against data breaches

FortiGuard Labs provides Global Threat Intelligence and Research

FortiGuard Labs Global Threat Intelligence

Every day attackers compromise new targets and gather new credentials from unsuspecting users. FortiGuard Labs continuously updates its stolen credential database and provides regular subscription updates to users.