|
by Rafiki 09/22/2022, 12:41pm PDT |
|
|
|
|
|
Mysterio wrote:
Giving any sort of access to a doofus whose first response to being spammed for two-factor requests isn't instantly "Holy shit, I better change my password!", but thinks the solution is just hit accept to make it go away.
Where I work, we have Teams and Outlook that work regardless of whether we're connected to company VPN or not. I leave them open on my company laptop because I have to be accessible 24/7, and every two weeks or so those fucking things will spam non-stop for authentication requests because the token or whatever expires. And it's always late at night, so every other minute my phone blows up with notifications asking for approval. Of course I accept to get it to shut the fuck up and leave me alone. If my company password ever gets stolen, I'll probably get hacked the same way (although I don't believe they can get on the company network itself, but they could download all of my e-mails and read my banal Teams message history.) |
|
|
|
|
|
|
|