Find notable cyber news and cases, enriched with sources, timelines, and signals.

DraftKings hit by network compromise

Incident
First reported
Last updated
Happening score
H score 35
1 unique sources, 2 articles

Summary

Hide ▲

DraftKings suffered a credential-stuffing account compromise that exposed nearly 68,000 accounts and enabled theft from roughly 1,600 accounts. Attackers reused credentials stolen in multiple breaches to take over customer logins and drain funds. The incident mattered because account reuse turned a login attack into direct financial loss and large-scale account abuse.

Related Happenings

DraftKings hit by account takeover attack

Incident
H score34 First: 25.06.2026 00:55 Last: 25.06.2026 00:55 Sources 1

About this happening: The **DraftKings** customer-account compromise exposed **60,000 accounts** through **credential stuffing** and enabled theft from affected users. Attackers added payment methods u...

BlackFile vishing extortion campaign targeting retail and hospitality organizations

Campaign
H score37 First: 24.04.2026 21:26 Last: 24.04.2026 21:26 Sources 1

About this happening: The **BlackFile** campaign is driving **vishing-based data theft and extortion** against **retail and hospitality organizations**, putting employee credentials and enterprise data...

Kamerin Stokes sentenced for DraftKings account-selling scheme

Law Enforcement
H score39 First: 17.04.2026 10:10 Last: 17.04.2026 10:10 Sources 1

How related: 23-year-old Kamerin Stokes of Memphis, Tennessee, was sentenced to 30 months in prison for selling access to tens of thousands of hacked DraftKings accounts.

About this happening: **Kamerin Stokes** was **sentenced to 30 months in prison** for selling access to **tens of thousands of hacked DraftKings accounts**, closing a federal **cybercrime** case that a...

Microsoft AiTM payroll pirate attack mitigation

Advisory/Mitigation
H score34 First: 10.04.2026 14:56 Last: 10.04.2026 14:56 Sources 1

About this happening: **Microsoft** is urging defenders to harden **Microsoft 365** and related **HR workflows** against **AiTM**-driven payroll theft by requiring **phishing-resistant MFA**, blocking...

PcComponentes hit by cyberattack

Incident
H score67 First: 21.01.2026 22:55 Last: 21.01.2026 22:55 Sources 1

About this happening: **PcComponentes** confirmed a **credential stuffing attack** on its platform, and the event mattered because a **small number of accounts** were compromised and account protection...

Timeline

  1. 17.04.2026 10:10 3 articles · 2mo ago

    DraftKings hit by network compromise

    Initial Disclosure

    Attackers used reused credentials in a **November 2022** credential-stuffing run to take over **DraftKings** accounts. The early phase focused on account access and resale rather than malware or exploitation.

    Show sources