|
|
|
|
|
|
by gregsadetsky
1639 days ago
|
|
|
Yeah, totally agreed and all great points. I also generally am more suspicious of the idea that they sat on the credentials for years. Although that is not impossible. One disproving fact (of sitting on the password for years) is that a few people here in this thread confirm having a login attempt from the exact same ip range, but with an account that was created this year -- in one case, in November 2021: https://news.ycombinator.com/item?id=29710262 So... it might turn out to be a much more recent vulnerability after all. |
|
|