- cross-posted to:
- technology@lemmy.world
- cross-posted to:
- technology@lemmy.world
You must log in or register to comment.
Title author must get paid by the comma
It’s correct, just a bit confusing to parse at first. Like a garden path sentence, but with commas.
I would replace the 2nd comma with a colon
No, Okta: senior management, not an errant employee, caused you to get hacked
Wellhehasabetterpaymentplanthan**methen
I just came to note that seeing Mastodon inserts instead of Twitter in an Ars article makes me feel warm and fuzzy.
That’s where infosec people are these days.
The old trope is so tired I am still amazed corporate propaganda shills it… it just looks even worse… iT wuZ aN InTerN, ExeC DiNDu NufIn
The biggest threats to infosec and ethics violations are from management, not the rank and file.
Yeah, cause the rank and file have to work overtime to fix that shit when it breaks
How does Okta not have systems like support systems like what was breached with the credentials behind a VPN as well? A system like that really ought to be on a secured network. We have so many systems at work that are VPN required and it’s mostly those where sensitive data lives.
I could see my own company falling victim to this kind of attack. I guess for a targeted attack all personal Google accounts or other password managers are a vulnerability. I’d cry if my work blocked the chrome password manager.
I stopped using browser built in password managers a long time ago. Third party password managers that require 2FA on a timeout are where it’s at. All of my passwords are available on all web browsers and my mobile device as necessary
Session network binding on its own seems pretty damn basic.
Dont bind to IP or other browser fingerprinting.
For security and privacy, my IP address and browser fingerprint change every 60 seconds. Its so fucking annoying when I get false-positive logged out every minute “for my security”
I hesitate to ask, but, why do you have your IP change every minute? You seem to have a very atypical usecase
I was oversimplifying. So the user agent and other browser setting change every 60 seconds using the chameleon add-on.
The IP doesn’t automaticallychanges, but I use a VPN. Often on shitty internet where packet loss routinely spikes to 30% (considered normal for most ISPs), I often have to disconnect and reconnect to the VPN, which causes the IP to change.
