Threat Monitoring for Superannuation Security | UpGuard

UpGuard analyzed a coordinated set of credential-abuse attacks reported against multiple Australian superannuation funds and found that the number of affected customer accounts closely matches the number of unique customer credentials observed in infostealer (stealer) logs over the past year. The report argues that stolen credentials traded on the dark web likely enabled many account compromises (with AustralianSuper reporting ~$100k stolen), recommends monitoring stealer data and enforcing multi-factor authentication, and notes discrepancies (e.g., REST’s higher reported affected count) that may indicate other attack methods like password spraying.