|
|
|
|
|
|
by dmazzoni
1004 days ago
|
|
|
Employees are only human. Even smart, savvy, well-trained employees can be fooled by good social engineering every once in a while. The key to good security is layering. Attackers should need to break through multiple layers in order to get access to critical systems. Compromising one employee's account should have granted them only limited access. The fact that this attack enabled them to get access to all of that employee's MFA tokens sounds like indeed the right thing to focus on. |
|
|