Hope this isn’t a repeated submission. Funny how they’re trying to deflect blame after they tried to change the EULA post breach.

  • @Umbraveil
    link
    English
    21
    edit-2
    1 year ago

    IP-based mitigation strategies are pretty useless for ATO and credential stuffing attacks.

    These days, bot nets for hire are easy to come by and you can rotate your IP on every request limiting you controls to simply block known bad IPs and data server IPs.