<?xml version="1.0" encoding="utf-8"?>
<rss version="2.0"><channel><title>Peakhour.IO - Account Protection</title><link>https://www.peakhour.io/</link><description></description><lastBuildDate>Fri, 19 Jun 2026 00:00:00 +1000</lastBuildDate><item><title>An Operating Model for API and Account Protection</title><link>https://www.peakhour.io/blog/api-account-protection-operating-model/</link><description>&lt;p&gt;API and account protection works best as an operating model: map routes, classify signals, choose proportionate actions, preserve evidence, and tune controls from monitor to enforce.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/api-account-protection-operating-model/</guid><category>API Security</category><category>API Security</category><category>Account Protection</category><category>Log Forwarding</category><category>Rate Limiting</category><category>Contextual Security</category><category>Traffic Control</category></item><item><title>API Bot Abuse Does Not Stay in One Endpoint</title><link>https://www.peakhour.io/blog/api-bot-abuse-login-checkout-account-journeys/</link><description>&lt;p&gt;API bot abuse moves across login, checkout, and account journeys. Defenders need route-aware bot, rate, and account controls that follow the campaign rather than treating each endpoint as a separate incident.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/api-bot-abuse-login-checkout-account-journeys/</guid><category>API Security</category><category>API Bot Protection</category><category>Bot Management</category><category>Account Protection</category><category>Rate Limiting</category><category>API Security</category><category>Threat Detection</category></item><item><title>API Protection and Account Protection Are One Request-Path Problem</title><link>https://www.peakhour.io/blog/api-protection-account-protection-request-path/</link><description>&lt;p&gt;Account protection does not stop at the login form. The same request path carries API, bot, rate, token, and account-risk evidence, and that is where the decision needs to happen.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/api-protection-account-protection-request-path/</guid><category>API Security</category><category>API Security</category><category>Account Protection</category><category>Bot Management</category><category>Rate Limiting</category><category>Threat Detection</category><category>Fraud Prevention</category></item><item><title>The Real Cost of Breached Credentials</title><link>https://www.peakhour.io/blog/cost-of-breached-credentials/</link><description>&lt;p&gt;Breached credentials keep creating cost after the original breach. They feed credential stuffing, account takeover, fraud, support, and reputation costs across login, recovery, checkout, and API flows.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/cost-of-breached-credentials/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Breached Credentials</category><category>Fraud Prevention</category><category>Bot Management</category><category>API Security</category><category>Residential Proxies</category></item><item><title>Credential Stuffing Does Not Stop at the Login Form</title><link>https://www.peakhour.io/blog/credential-stuffing-after-the-login/</link><description>&lt;p&gt;Credential stuffing risk continues after a password works. Account protection needs to watch password reset, email change, stored payment, gift card, and checkout flows.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/credential-stuffing-after-the-login/</guid><category>API Security</category><category>API Security</category><category>Account Protection</category><category>Credential Stuffing</category><category>Bot Management</category><category>Breached Credentials</category><category>Fraud Prevention</category></item><item><title>Fingerprints Are Evidence, Not Identity</title><link>https://www.peakhour.io/blog/fingerprints-are-evidence-not-identity/</link><description>&lt;p&gt;Browser and network fingerprints are useful security evidence, but they should not be treated as proof of a person's identity.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/fingerprints-are-evidence-not-identity/</guid><category>API Security</category><category>API Security</category><category>Fingerprinting</category><category>Bot Management</category><category>Account Protection</category><category>Network Fingerprinting</category><category>Browser Fingerprinting</category></item><item><title>Account Security Without Tracking People</title><link>https://www.peakhour.io/blog/privacy-respecting-account-security-risk-signals/</link><description>&lt;p&gt;Safer logins do not require treating people as products. Account defence should use minimised, purpose-bound risk signals and proportionate decisions.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/privacy-respecting-account-security-risk-signals/</guid><category>API Security</category><category>API Security</category><category>Account Protection</category><category>Contextual Security</category><category>Privacy</category><category>Fingerprinting</category><category>Risk-Based Authentication</category></item><item><title>How Residential Proxies Changed API and Account Abuse</title><link>https://www.peakhour.io/blog/residential-proxies-api-account-abuse/</link><description>&lt;p&gt;Residential proxies have changed account abuse from obvious bursts into distributed, low-noise workflows across login, account, and API routes. Treat proxy use as a risk signal, not a blunt block rule.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/residential-proxies-api-account-abuse/</guid><category>API Security</category><category>API Security</category><category>Account Protection</category><category>Residential Proxies</category><category>Bot Management</category><category>Rate Limiting</category><category>Threat Detection</category></item><item><title>Shadow APIs Are Account-Abuse Paths</title><link>https://www.peakhour.io/blog/shadow-apis-account-abuse/</link><description>&lt;p&gt;Shadow APIs matter because attackers do not care whether a route is documented. Mobile, partner, browser-backed, and legacy APIs can all become account-abuse paths when they remain outside normal controls.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jun 2026 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2026-06-19:/blog/shadow-apis-account-abuse/</guid><category>API Security</category><category>API Security</category><category>Shadow APIs</category><category>Account Protection</category><category>Bot Management</category><category>Threat Detection</category><category>DevSecOps</category></item><item><title>Anatomy of a Credential Stuffing Attack</title><link>https://www.peakhour.io/blog/anatomy-of-a-credential-stuffing-attack/</link><description>&lt;p&gt;A deep dive into how credential stuffing attacks work, the tools used, and how to build a multi-layered defense.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 01 Sep 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-09-01:/blog/anatomy-of-a-credential-stuffing-attack/</guid><category>Security</category><category>Credential Stuffing</category><category>Account Protection</category><category>Fraud Prevention</category><category>Residential Proxies</category><category>DNS</category><category>Threat Detection</category></item><item><title>Beyond the IP Address</title><link>https://www.peakhour.io/blog/beyond-the-ip-address-advanced-rate-limiting/</link><description>&lt;p&gt;Discover why traditional IP-based rate limiting is obsolete and how advanced techniques provide robust protection against modern distributed attacks.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 01 Sep 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-09-01:/blog/beyond-the-ip-address-advanced-rate-limiting/</guid><category>Rate Limiting</category><category>Rate Limiting</category><category>DDoS</category><category>API Security</category><category>Residential Proxies</category><category>Bot Management</category><category>Account Protection</category></item><item><title>The CAPTCHA Conundrum</title><link>https://www.peakhour.io/blog/captcha-conundrum-frustrating-humans-easy-for-bots/</link><description>&lt;p&gt;Explore why traditional CAPTCHAs are failing both users and security, and discover modern, invisible alternatives.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 01 Sep 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-09-01:/blog/captcha-conundrum-frustrating-humans-easy-for-bots/</guid><category>Bots</category><category>Bot Management</category><category>Credential Stuffing</category><category>Account Protection</category></item><item><title>Key Considerations for Effective Bot Management</title><link>https://www.peakhour.io/blog/key-considerations-effective-bot-management/</link><description>&lt;p&gt;With nearly half of all internet traffic being automated, a robust bot management strategy is essential. This article explores the key considerations for effective bot detection, classification, and response in the face of evolving threats.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 01 Sep 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-09-01:/blog/key-considerations-effective-bot-management/</guid><category>Bots</category><category>Bot Management</category><category>Threat Detection</category><category>API Security</category><category>Residential Proxies</category><category>Credential Stuffing</category><category>Account Protection</category></item><item><title>How to Use Bot Management for IAM Use Cases</title><link>https://www.peakhour.io/blog/bot-management-for-iam-use-cases/</link><description>&lt;p&gt;Bots are part of account takeover, fraud, scraping, and other abuse. Identity and access management leaders need a clear business case for bot management, or their organisations face avoidable account takeover losses and will be less prepared for the risks introduced when customers use AI agents.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 20 Aug 2025 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-08-20:/blog/bot-management-for-iam-use-cases/</guid><category>Security</category><category>Bot Management</category><category>Account Protection</category><category>Credential Stuffing</category><category>API Security</category><category>Threat Detection</category><category>Fraud Prevention</category></item><item><title>The Negative Impact of Visible CAPTCHAs on Bounce Rates and Conversions</title><link>https://www.peakhour.io/blog/the-negative-impact-of-captchas-on-ecommerce-conversions/</link><description>&lt;p&gt;CAPTCHAs have long been a mainstay of bot management solutions, but the tradeoffs are lower conversions, find out just how bad it is.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Wed, 06 Aug 2025 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-08-06:/blog/the-negative-impact-of-captchas-on-ecommerce-conversions/</guid><category>Security</category><category>Bot Management</category><category>Account Protection</category></item><item><title>Protecting Against a Share Point Zero Day Vulnerability with Network Fingerprinting</title><link>https://www.peakhour.io/blog/protecting-against-share-point-zero-day/</link><description>&lt;p&gt;Analysis of attempts to exploit a recent Share Point zero day vulnerability reveal network fingerprinting and classification is a robust defense.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Wed, 23 Jul 2025 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-07-23:/blog/protecting-against-share-point-zero-day/</guid><category>Security</category><category>Threat Detection</category><category>Credential Stuffing</category><category>Account Protection</category><category>DevSecOps</category><category>DDoS</category><category>Application Security</category></item><item><title>A Complete Guide to SMS Pumping Fraud</title><link>https://www.peakhour.io/blog/sms-pumping-fraud-business-impact-protection/</link><description>&lt;p&gt;SMS pumping fraud cost businesses $6.7 billion in 2021. Learn how these sophisticated attacks work, which companies face the highest risk, and the most effective protection strategies.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Thu, 13 Mar 2025 14:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-03-13:/blog/sms-pumping-fraud-business-impact-protection/</guid><category>Fraud</category><category>Fraud Prevention</category><category>Account Protection</category><category>Residential Proxies</category><category>Credential Stuffing</category><category>Bot Management</category><category>DDoS</category></item><item><title>Why We Can't Trust IP Addresses</title><link>https://www.peakhour.io/blog/residential-proxies-trust-issues/</link><description>&lt;p&gt;The proliferation of residential proxy networks has undermined traditional IP-based security, enabling attackers to bypass protection measures while appearing as legitimate users.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 11 Mar 2025 14:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-03-11:/blog/residential-proxies-trust-issues/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>DDoS</category><category>Credential Stuffing</category><category>DNS</category><category>Threat Detection</category><category>Account Protection</category></item><item><title>Data-Driven Risk Management</title><link>https://www.peakhour.io/blog/data-driven-risk-management-contextual-security/</link><description>&lt;p&gt;How Peakhour's contextual security aligns with Visa's data-driven risk management approach in the 2025-2028 Security Roadmap.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 07 Feb 2025 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-02-07:/blog/data-driven-risk-management-contextual-security/</guid><category>Account Protection</category><category>Account Protection</category><category>Application Security</category><category>Credential Stuffing</category><category>API Security</category><category>Threat Detection</category><category>PCI DSS</category></item><item><title>Preventing Enumeration Attacks</title><link>https://www.peakhour.io/blog/preventing-enumeration-attacks-visa-roadmap/</link><description>&lt;p&gt;An analysis of how Peakhour's solutions help prevent enumeration attacks, aligning with Visa's Security Roadmap 2025-2028 priorities.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 24 Jan 2025 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-01-24:/blog/preventing-enumeration-attacks-visa-roadmap/</guid><category>Security</category><category>Account Protection</category><category>Credential Stuffing</category><category>PCI DSS</category><category>API Security</category><category>Fraud Prevention</category><category>Threat Detection</category></item><item><title>Visa's Security Roadmap 2025-2028</title><link>https://www.peakhour.io/blog/visa-security-roadmap-2025-overview/</link><description>&lt;p&gt;An analysis of Visa's Security Roadmap 2025-2028 and how Peakhour's solutions help Australian businesses meet these security objectives.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 21 Jan 2025 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-01-21:/blog/visa-security-roadmap-2025-overview/</guid><category>Fraud</category><category>PCI DSS</category><category>Account Protection</category><category>Credential Stuffing</category><category>Fraud Prevention</category><category>Magento</category><category>Application Security</category></item><item><title>The Hidden Cost of Click Fraud</title><link>https://www.peakhour.io/blog/protecting-against-click-fraud/</link><description>&lt;p&gt;Click fraud drains marketing budgets and corrupts campaign data. Learn how bots and residential proxies impact your ad spend and marketing strategy.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Tue, 14 Jan 2025 13:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2025-01-14:/blog/protecting-against-click-fraud/</guid><category>Fraud</category><category>Fraud Prevention</category><category>Bot Management</category><category>Credential Stuffing</category><category>Residential Proxies</category><category>Analytics</category><category>Account Protection</category></item><item><title>Your Anti-Fraud Residential Proxy Detection Sucks</title><link>https://www.peakhour.io/blog/anti-fraud-residential-proxy-detection/</link><description>&lt;p&gt;Your anti fraud IP Intelligence service is no longer fit for purpose. Learn about the challenges in detecting residential proxies and why traditional methods don't work.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Fri, 04 Oct 2024 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-10-04:/blog/anti-fraud-residential-proxy-detection/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Fraud Prevention</category><category>Threat Detection</category><category>Credential Stuffing</category><category>DNS</category><category>Account Protection</category></item><item><title>Managing Bots For Application Security</title><link>https://www.peakhour.io/blog/enterprise-bot-management-application-security/</link><description>&lt;p&gt;Comprehensive guide to enterprise bot management for modern application security platforms. Learn how to protect applications and APIs from sophisticated bot threats including anti-detect browsers, credential stuffing, and automated attacks targeting DevOps environments.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Sun, 15 Sep 2024 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-09-15:/blog/enterprise-bot-management-application-security/</guid><category>Bots</category><category>Bot Management</category><category>API Security</category><category>Credential Stuffing</category><category>Account Protection</category><category>DevSecOps</category><category>Application Security</category></item><item><title>Application Security for Financial Services Under CPS 234</title><link>https://www.peakhour.io/blog/credential-stuffing-defence-cps-234-compliance/</link><description>&lt;p&gt;Comprehensive analysis of credential stuffing threats against Australian financial institutions and how application security platforms help meet CPS 234 disclosure requirements whilst preventing account takeover attacks.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Mon, 29 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-29:/blog/credential-stuffing-defence-cps-234-compliance/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Fraud Prevention</category><category>Application Security</category><category>DevSecOps</category><category>PCI DSS</category></item><item><title>The Australian epidemic of Account Takeover attacks</title><link>https://www.peakhour.io/blog/credential-stuffing-threat-australian-businesses/</link><description>&lt;p&gt;An in-depth look at the growing threat of credential stuffing attacks on Australian businesses, including recent case studies, defense challenges, and practical recommendations.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 29 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-29:/blog/credential-stuffing-threat-australian-businesses/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Fraud Prevention</category><category>Residential Proxies</category><category>Threat Detection</category><category>DNS</category></item><item><title>The Challenge of Proxy Detection</title><link>https://www.peakhour.io/blog/proxy-detection-challenges-existing-solutions/</link><description>&lt;p&gt;Examine why current security solutions fail to detect and mitigate threats from residential proxies, and the need for comprehensive protection strategies.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 19 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-19:/blog/proxy-detection-challenges-existing-solutions/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Bot Management</category><category>Credential Stuffing</category><category>Account Protection</category><category>API Security</category><category>Threat Detection</category></item><item><title>Quantifying The Residential Proxy Threat</title><link>https://www.peakhour.io/blog/residential-proxy-detection-quantifying-hidden-threat/</link><description>&lt;p&gt;Explore the complexities of residential proxy detection and its impact on organisational risk, with a focus on quantifying the threat and reframing security approaches.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Thu, 18 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-18:/blog/residential-proxy-detection-quantifying-hidden-threat/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Threat Detection</category><category>Credential Stuffing</category><category>Account Protection</category><category>DDoS</category><category>Bot Management</category></item><item><title>Account Protection and User Experience in Web Applications</title><link>https://www.peakhour.io/blog/frictionless-customer-experiences/</link><description>&lt;p&gt;Explore strategies to enhance web application security without compromising user experience, focusing on contextual security and adaptive authentication measures.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-17:/blog/frictionless-customer-experiences/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Application Security</category><category>Fraud Prevention</category><category>API Security</category><category>Magento</category></item><item><title>The Cost of Credential Stuffing</title><link>https://www.peakhour.io/blog/credential-stuffing-business-impact/</link><description>&lt;p&gt;Explore how credential stuffing attacks and account takeovers affect business reputation and customer trust.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 Jul 2024 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-17:/blog/credential-stuffing-business-impact/</guid><category>Account Protection</category><category>Credential Stuffing</category><category>Account Protection</category><category>Fraud Prevention</category><category>Residential Proxies</category><category>DNS</category><category>Magento</category></item><item><title>2024 Survey Insights</title><link>https://www.peakhour.io/blog/credential-stuffing-and-account-takeover-survey-2024/</link><description>&lt;p&gt;Our 2024 survey of Australian CISOs and CTOs looks at how businesses are approaching account protection, particularly credential stuffing and residential proxies.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 16 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-16:/blog/credential-stuffing-and-account-takeover-survey-2024/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Residential Proxies</category><category>API Security</category><category>Bot Management</category><category>DevSecOps</category></item><item><title>2024 Survey Insights</title><link>https://www.peakhour.io/blog/credential-stuffing-and-account-takeover-survey-2024-full/</link><description>&lt;p&gt;Survey data from Australian CISOs and CTOs shows broad MFA adoption, lower bot protection uptake, and early attention on residential proxy detection for credential stuffing and account takeover risk.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 16 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-16:/blog/credential-stuffing-and-account-takeover-survey-2024-full/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Residential Proxies</category><category>API Security</category><category>Fraud Prevention</category><category>Bot Management</category></item><item><title>Application Security Beyond MFA</title><link>https://www.peakhour.io/blog/why-mfa-is-an-incomplete-defence/</link><description>&lt;p&gt;MFA helps, but it does not stop social engineering, residential proxy abuse, credential stuffing, or session risk on its own.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 15 Jul 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-07-15:/blog/why-mfa-is-an-incomplete-defence/</guid><category>Account Protection</category><category>Account Protection</category><category>Credential Stuffing</category><category>Bot Management</category><category>API Security</category><category>Residential Proxies</category><category>Threat Detection</category></item><item><title>Addressing Key Cloud Security Categories</title><link>https://www.peakhour.io/blog/peakhour-cloud-security-post-wiz/</link><description>&lt;p&gt;An analysis of Peakhour's role in addressing key cloud security categories identified in recent industry analysis, demonstrating its comprehensive approach to modern cloud security challenges.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 01 May 2024 10:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-05-01:/blog/peakhour-cloud-security-post-wiz/</guid><category>Security</category><category>API Security</category><category>Threat Detection</category><category>Account Protection</category><category>DevSecOps</category><category>Application Security</category><category>CDN</category></item><item><title>Managing Breached Credential Usage</title><link>https://www.peakhour.io/blog/breached-credentials-protection-application-security-platform/</link><description>&lt;p&gt;How breached credential checks and risk signals help detect credential stuffing without adding unnecessary login friction.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 15 Mar 2024 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-03-15:/blog/breached-credentials-protection-application-security-platform/</guid><category>Account Protection</category><category>Credential Stuffing</category><category>Account Protection</category><category>DevSecOps</category><category>Application Security</category><category>Threat Detection</category><category>API Security</category></item><item><title>The Iconic is the latest Account Takeover victim in the news</title><link>https://www.peakhour.io/blog/account-takeover-fraud-theiconic/</link><description>&lt;p&gt;Popular Australian fashion website TheIconic recently suffered reputational damage from fraudsters placing orders after an account takeover. Learn how this happens and what you can do to stop it.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Mon, 15 Jan 2024 13:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2024-01-15:/blog/account-takeover-fraud-theiconic/</guid><category>Security</category><category>Account Protection</category><category>Credential Stuffing</category></item><item><title>HTTP Security Headers</title><link>https://www.peakhour.io/blog/http-security-headers-web-application-protection/</link><description>&lt;p&gt;Comprehensive guide to HTTP security headers for protecting web applications from client-side attacks. Learn essential browser security configurations for modern application security platforms and DevSecOps workflows.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 28 Nov 2023 14:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-11-28:/blog/http-security-headers-web-application-protection/</guid><category>Security</category><category>Application Security</category><category>Account Protection</category><category>API Security</category><category>Credential Stuffing</category><category>Drupal</category><category>DDoS</category></item><item><title>A Tale Of Two Scoring Systems</title><link>https://www.peakhour.io/blog/a-tale-of-two-scoring-systems-and-atlassian-confluence/</link><description>&lt;p&gt;Reviewing the CVSS an EPSS CVE scoring systems in light of the Atlassian Confluence-Aggedon&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 08 Nov 2023 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-11-08:/blog/a-tale-of-two-scoring-systems-and-atlassian-confluence/</guid><category>Security</category><category>Credential Stuffing</category><category>Threat Detection</category><category>Account Protection</category><category>DevSecOps</category><category>SOC 2</category></item><item><title>Navigating CDN Consolidation</title><link>https://www.peakhour.io/blog/navigating-cdn-consolidation/</link><description>&lt;p&gt;Explore the complexities of switching CDN providers amid industry consolidation and how Peakhour can assist in the transition&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 01 Nov 2023 00:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-11-01:/blog/navigating-cdn-consolidation/</guid><category>Interest</category><category>CDN</category><category>Magento</category><category>Account Protection</category><category>DDoS</category></item><item><title>Google Chrome's "IP Protection" vs Apple Private Relay</title><link>https://www.peakhour.io/blog/apple-private-relay-vs-google-ip-protection/</link><description>&lt;p&gt;An exploration of Google Chrome's new "IP Protection" feature and a comparison with Apple's iCloud Private Relay.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 25 Oct 2023 13:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-10-25:/blog/apple-private-relay-vs-google-ip-protection/</guid><category>Security</category><category>Residential Proxies</category><category>API Security</category><category>Account Protection</category><category>GDPR</category><category>Fingerprinting</category><category>Bot Management</category></item><item><title>Google Chrome's "IP Protection" and Online Privacy</title><link>https://www.peakhour.io/blog/google-chrome-ip-protection-and-online-privacy/</link><description>&lt;p&gt;An exploration of Google Chrome's new "IP Protection" feature, its promise of enhanced privacy.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Tue, 24 Oct 2023 13:00:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-10-24:/blog/google-chrome-ip-protection-and-online-privacy/</guid><category>Security</category><category>Residential Proxies</category><category>Account Protection</category><category>API Security</category><category>DDoS</category><category>Fingerprinting</category><category>Bot Management</category></item><item><title>APRA Cybersecurity Guidelines</title><link>https://www.peakhour.io/blog/apra-cybersecurity-application-security-financial-services/</link><description>&lt;p&gt;Comprehensive guide to APRA cybersecurity requirements for Australian financial institutions. Learn how application security platforms help meet CPS 234 compliance and Information Security Manual guidelines for protecting financial services infrastructure.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Thu, 12 Oct 2023 12:31:00 +1100</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-10-12:/blog/apra-cybersecurity-application-security-financial-services/</guid><category>Financial Services Security</category><category>Compliance</category><category>Account Protection</category><category>Application Security</category><category>Threat Detection</category><category>GDPR</category><category>PCI DSS</category></item><item><title>The Rise of OpenBullet</title><link>https://www.peakhour.io/blog/the-rise-of-openbullet/</link><description>&lt;p&gt;A comprehensive look at OpenBullet, its capabilities, and the implications for cybersecurity in the face of its misuse.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Fri, 01 Sep 2023 14:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-09-01:/blog/the-rise-of-openbullet/</guid><category>Security</category><category>Bot Management</category><category>Application Security</category><category>DevSecOps</category><category>Account Protection</category><category>Credential Stuffing</category><category>Threat Detection</category></item><item><title>Headless Commerce Security</title><link>https://www.peakhour.io/blog/headless-commerce-security-api-protection/</link><description>&lt;p&gt;Comprehensive analysis of security challenges in headless commerce and Single Page Applications. Learn how to protect modern e-commerce APIs and microservices architectures from scraping, fraud, and automated attacks.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">Dan</dc:creator><pubDate>Wed, 28 Jun 2023 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-06-28:/blog/headless-commerce-security-api-protection/</guid><category>Security</category><category>API Security</category><category>Magento</category><category>Account Protection</category><category>Drupal</category><category>Application Security</category><category>Bot Management</category></item><item><title>Enterprise DDoS Protection</title><link>https://www.peakhour.io/blog/enterprise-ddos-protection-microsoft-365-application-security/</link><description>&lt;p&gt;Analysis of the Microsoft 365 DDoS attack by Storm-1359 reveals critical lessons for enterprise application security platforms. Learn advanced Layer 7 DDoS protection strategies and rate limiting techniques for modern applications.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Mon, 19 Jun 2023 00:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-06-19:/blog/enterprise-ddos-protection-microsoft-365-application-security/</guid><category>DDoS</category><category>DDoS</category><category>Threat Detection</category><category>Rate Limiting</category><category>Application Security</category><category>Account Protection</category><category>API Security</category></item><item><title>The Rise of the Dragon</title><link>https://www.peakhour.io/blog/camaro-dragon-malware/</link><description>&lt;p&gt;Residential proxy malware, and its implications for traditional cybersecurity measures, emphasising the need for evolving threat detection and mitigation strategies.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 May 2023 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-05-17:/blog/camaro-dragon-malware/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Threat Detection</category><category>Account Protection</category><category>Credential Stuffing</category><category>DDoS</category><category>Bot Management</category></item><item><title>Residential Proxies and MITRE Framework</title><link>https://www.peakhour.io/blog/residential-proxies-mitre-framework/</link><description>&lt;p&gt;Explore residential proxies within the context of the MITRE ATT&amp;amp;CK framework, highlighting the security implications and ethical considerations.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 May 2023 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-05-17:/blog/residential-proxies-mitre-framework/</guid><category>Residential Proxies</category><category>Residential Proxies</category><category>Account Protection</category><category>Credential Stuffing</category><category>Threat Detection</category><category>DDoS</category><category>DevSecOps</category></item><item><title>Residential Proxy Detection</title><link>https://www.peakhour.io/blog/residential-proxies-unseen-challenges/</link><description>&lt;p&gt;Comprehensive analysis of residential proxy threats and detection strategies for modern application security platforms. Learn how sophisticated threat actors use residential proxies to bypass traditional security measures.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 17 May 2023 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2023-05-17:/blog/residential-proxies-unseen-challenges/</guid><category>Threat Intelligence</category><category>Residential Proxies</category><category>Bot Management</category><category>Threat Detection</category><category>Account Protection</category><category>Credential Stuffing</category><category>DDoS</category></item><item><title>Malicious Bot Threats</title><link>https://www.peakhour.io/blog/malicious-bot-threats-enterprise-application-security/</link><description>&lt;p&gt;Comprehensive analysis of malicious bot threats targeting modern applications and APIs. Learn how enterprise bot management protects against automated attacks, credential stuffing, price scraping, and sophisticated bot-driven financial damage.&lt;/p&gt;</description><dc:creator xmlns:dc="http://purl.org/dc/elements/1.1/">AC</dc:creator><pubDate>Wed, 12 Aug 2020 13:00:00 +1000</pubDate><guid isPermaLink="false">tag:www.peakhour.io,2020-08-12:/blog/malicious-bot-threats-enterprise-application-security/</guid><category>Bots</category><category>Bot Management</category><category>Credential Stuffing</category><category>API Security</category><category>Account Protection</category><category>Residential Proxies</category><category>Fraud Prevention</category></item></channel></rss>