Database collision attack monitoring method, device and system and computer storage medium

Abstract

The embodiment of the invention discloses a database collision attack monitoring method. The method comprises the steps of obtaining login information of a user login behavior; calculating a databasecollision attack risk value corresponding to at least one user behavior factor according to the login information of the user login behavior; determining a database collision attack risk value of thecurrent login behavior of the user according to the database collision attack risk value corresponding to the at least one user behavior factor; and positioning a database collision attack risk type of the current login behavior of the user according to the database collision attack risk value of the current login behavior of the user. The embodiment of the invention further discloses a database collision attack monitoring device and system and a computer storage medium.

Description

technical field

[0001] The invention relates to the field of the Internet, in particular to a credential stuffing attack monitoring method, device, system and computer storage medium. Background technique

[0002] As the Internet gradually penetrates into all aspects of social life, people's work and life are increasingly inseparable from the Internet. At the same time, high-frequency credential stuffing attacks, slow credential stuffing attacks and other credential stuffing attack methods put user data at risk of leakage. Faced with this situation, many Internet platforms have correspondingly increased the means of anti-crash storage attacks. For example, add graphic verification codes, SMS verification codes and other login verification methods in the user login link, add credential stuffing attack analysis equipment at the network layer, analyze based on user abnormal login behavior, and activate the set protection strategy when a credible stuffing attack is found. Cred...

Images