Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I got a suspicious password reset request email today from Meta but it landed in my inbox. Luckily I have MFA and after checking audit logs inside IG upon logging in, I did not see anything suspicious.


2FA did not help according to the primary finding

https://news.ycombinator.com/item?id=48359102


In that case it sounds like the last waves of malicious reset attempts happened after the patch was put in place




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: