1. State Farm was hit with a credential stuffing attack last month. It disclosed this in an advisory that was short on details. The company posted suggestions on how to improve customer password hygiene, such as using MFA and more complex and unique passwords. Customers who were affected had their passwords reset. No personal data was leaked.