Y
Hacker News
new
|
ask
|
show
|
jobs
by
GoblinSlayer
1042 days ago
If the attackers control user machine they will have as much information as the user anyway.
1 comments
hannasanarion
1042 days ago
Not if they don't have the passwords and 2FA devices to access company resources from that machine, and all of the sessions are expired.
link
GoblinSlayer
1042 days ago
If all sessions expired, then the user doesn't have access to information either - same access as the attacker. There are cached copies of emails too.
link