Forum Overview :: Hacker
 
Re: Major hack at Uber by Rafiki 09/22/2022, 12:41pm PDT
Mysterio wrote:



Giving any sort of access to a doofus whose first response to being spammed for two-factor requests isn't instantly "Holy shit, I better change my password!", but thinks the solution is just hit accept to make it go away.


Where I work, we have Teams and Outlook that work regardless of whether we're connected to company VPN or not. I leave them open on my company laptop because I have to be accessible 24/7, and every two weeks or so those fucking things will spam non-stop for authentication requests because the token or whatever expires. And it's always late at night, so every other minute my phone blows up with notifications asking for approval. Of course I accept to get it to shut the fuck up and leave me alone. If my company password ever gets stolen, I'll probably get hacked the same way (although I don't believe they can get on the company network itself, but they could download all of my e-mails and read my banal Teams message history.)
PREVIOUS REPLY QUOTE
 
Major hack at Uber by Mysterio 09/22/2022, 8:39am PDT NEW
    Good ole MFA. Nothing beats it. NT by Bart "Thought Leader" Simpson 09/22/2022, 8:43am PDT NEW
    Maybe he was driving at the time and couldn't really see what he was doing. NT by Tomb of the Unknown Poster 09/22/2022, 9:32am PDT NEW
    Re: Major hack at Uber by Rafiki 09/22/2022, 12:41pm PDT NEW
 
powered by pointy