Shape is
In the News

Shape has continued to make headlines since emerging from stealth
due to the company’s innovative service and industry expertise.

Recent Headlines


Five questions about the massive Equifax breach

Sept 9, 2017 / Joe Uchill, The Hill

“For years we’ve been educating people not to enter their personal information into sites they have never visited before to protect them from phishing,” said Shuman Ghosemajumder, chief technology officer of Shape Security. “And that’s exactly what the notification site asks people to do.”

Your social security number probably got leaked and that’s very, very bad

Sept 8, 2017 / Stan Horaczek, Popular Science

Shape CTO Shuman Ghosemajumder on Equifax breach: "You should probably act as though your data has been compromised."

Equifax Breach Puts Social Security Number at Center of Digital Identity Crisis

Sept 8, 2017 / Steve Rosenbush, Wall Street Journal

“...a profound implication for how we use SSNs throughout the country, as it is possible that as a result of this breach, the majority of adults’ SSNs are now compromised.”

The Morning Download: Global Cyberattacks Put Pressure on CISOs, CIOs

May 15, 2017 / Steve Rosenbush, Wall Street Journal

"...organizations should not act out the old adage that the CISO’s primary job is to get fired when something goes wrong, in this case."

Apple ransom highlights danger of credential stuffing

April 7, 2017 / Seth Rosenblatt, Bloomberg

"Credential-stuffing attacks are not rare. They account for more than 90 percent of the Internet traffic to log-in pages at major services, Shape Security’s Ghosemajumder says."

These Are the 50 Most Promising Startups You’ve Never Heard Of

March 6, 2017 / Ellen Huet, Bloomberg

"Quid looked at more than 50,000 companies and chose 50 it deemed the most promising."

Cloudflare Bug Spills Private Data Online

February 27, 2017 / Phil Muncaster, Infosecurity

"This incident has many people suggesting that everyone in the world should change all of their passwords immediately"

AI isn't just for the good guys anymore

February 1, 2017 / Maria Korolov, CSO Online

"Criminals are already using image recognition technology, in combination with "Captcha farms," to by-pass this security measure"

3+ billion credential breaches in 2016 – 2% success rate

January 24, 2017 / Ray Shaw, ITWire

"In 2011, while serving as deputy assistant secretary of defence at the Pentagon, Shape Security co-founder Sumit Agarwal observed a rising trend in the volume and complexity of automated attacks on Web and mobile applications. "

Credential-Stuffing Schemes Rely on Recycled Login Information

January 19, 2017 / Larry Loeb, Security Intelligence

"On most websites, users enter their email addresses in lieu of user IDs, so cybercriminals often need only to crack a victim’s password once to gain entry to several of his or her accounts."

Credential-Stuffing Attacks Take Enterprise Systems By Storm

January 17, 2017 / Ericka Chickowski, Dark Reading

"A study out today from Shape Security shows that it's common for credential-stuffing login attempts to account for more than 90% of all login activity on Internet-facing systems at Fortune 100 firms."

Credential Stuffing: a Successful and Growing Attack Methodology

January 17, 2017 / Kevin Townsend, Security Week

"Now consider credential stuffing. The term was coined by Shape Security co-founder Sumit Agarwal when he was serving as Deputy Assistant Secretary of Defense at the Pentagon."

Credential-stuffers enjoy up to 2% attack success rate - report

January 17, 2017 / John Leyden, The Register

"Hackers achieve a success rate of 0.1 to 2 per cent when reusing stolen credentials to access other sites, according to a new study by Shape Security."

Hacker Grabs Data on 1.5 Million ESEA Gamers, Demands 100K Ransom

January 10, 2017 / Kevin Townsend, Security Week

"According to figures from Shape Security, at least 11 gaming organizations suffered credential leaks last year."

Archived News:
2014 | 2015 | 2016 | Recent

Under Cyberattack?
Test drive shape rapid defense.

Get Threat Assessment