Re: We need a court action
I work for a large online company, we're constantly seeing attacks such as this - It's some script-kiddie taking lists of compromised usernames/email addresses and password, then simply replaying them against another sites login form, to see if the passwords are the same!
I have sympathy with GWR here, they will be blamed for this.. and whilst there is steps they could take (2FA, behaviour and Geo monitoring etc), in reality, the fault lies primarily with the customer for reusing passwords (yes, we're all guilty of this, including me!).