I learned my lesson of not using sms as 2fa the first time I traveled outside the US and lost access to over half of my apps.
A leaky database spilled 2FA codes for the world’s tech giants
"...the technology company left one of its internal databases exposed to the internet without a password, allowing anyone to access the sensitive data inside using only a web browser, just with knowledge of the database’s public IP address."
One more example of how people are usually the weakest link in pentesting and cybersecurity.
#cybersecgirl #privacytechpro #cybersecurity #infosec #opsec
https://techcrunch.com/2024/02/29/leaky-database-two-factor-codes/
Discussion
No replies yet.