874

submitted 2 years ago by Eezyville@sh.itjust.works to c/technology@lemmy.world

220 comments fedilink hide all child comments

Hope this isn't a repeated submission. Funny how they're trying to deflect blame after they tried to change the EULA post breach.

you are viewing a single comment's thread
view the rest of the comments

[-] CommanderCloon@lemmy.ml 15 points 2 years ago

The attackers used IPs situated in their victims regions to log in, across months, bypassing rate limiting or region locks / warnings
I don't know if they did but it would seem trivial to just use the tokens in-situ once they managed to login instead of saving and reusing said tokens. Also those tokens are the end user client tokens, IP locking them would make people with dynamic IPs or logged in 5G throw a fuss after the 5th login in half an hour of subway
Yeah 2FA should be a default everywhere but people just throw a fuss at the slightest inconvenience. We very much need 2FA to become the norm so it's not seen as such

[-] unphazed@lemmy.world 3 points 2 years ago

2 factor beats the hell outta that "match the horse with the direction of the the arrow 10x" bs

this post was submitted on 03 Jan 2024

874 points (100.0% liked)

Technology

72932 readers

2853 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related news or articles.
Be excellent to each other!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
Check for duplicates before posting, duplicates may be removed
Accounts 7 days and younger will have their posts automatically removed.

founded 2 years ago

MODERATORS