Y
Hacker News
new
|
ask
|
show
|
jobs
by
MattPalmer1086
973 days ago
Apparently customers upload HTTP archive files to the support system which can include session tokens for their actual systems.
So it allows attackers to compromise Okta's customers core infrastructure.