Great details on how Cisco got hacked.

1- Personal Google account of an employee gets compromised - it has password synced enabled.

2- Got all the employee's passwords, including their Cisco VPN credentials.

3- Phishing to accept 2FA

4- They are in

· · Web · 1 · 5 · 7
@dcid use Google authorization, they said... c'mon, how much shit must happen before people come to a simple conclusion that all that 2FA and single authorization services are total bullshit and a hole in security number one.
Sign in to participate in the conversation

Open Source Social Network. Focused on technology, networking, linux, privacy and security, but open to anyone. Civil discourse, polite and open. Managed by the team.