How New AI Agents Will Transform Credential Stuffing Attacks

Credential stuffing attacks, fueled by stolen credentials and infostealer infections, are expected to worsen with the advent of Computer-Using Agents (CUAs). CUAs, like OpenAI’s Operator, enable low-cost automation of web tasks, including credential stuffing, making it easier for attackers to target a broader range of apps. This new technology could enable attackers to leverage password reuse and convert compromised credentials into systemic breaches more efficiently.