zlacker

[return to "‘BlueLeaks’ Exposes Files from Hundreds of Police Departments"]
1. voiper+83[view] [source] 2020-06-22 12:04:25
>>itcrow+(OP)
>“Netsential confirmed that this compromise was likely the result of a threat actor who leveraged a compromised Netsential customer user account and the web platform’s upload feature to introduce malicious content, allowing for the exfiltration of other Netsential customer data.”

So they are spinning it as a user's fault? Not the fault of Netsential for allowing malicious content to be a problem...

◧◩
2. shadow+cr[view] [source] 2020-06-22 14:45:32
>>voiper+83
If that's the goal, they're doing it poorly, because the only spin I smell from this description is the tacit admission they failed to successfully security-compartmentalize one user from attack via another user's credentials.
[go to top]