3. Draft Kings hacked - hackers steal $300K in credential stuffing attack

Draft Kings hacked - hackers steal $300K in credential stuffing attack

I’m also infosec. I understand the point you’re making, but humor me for a moment.

Your boss, the CEO, who needs help logging into his email when his browser cache expires, asks for your help.

He sends you a couple of tweets made by a user with a large following claiming that their account with you got hacked because someone used their compromised Instagram password to make unauthorized changes in your system.

Do you:

  1. Create a ticket to investigate the breach so you can proactively stop it from happening again, or

  2. Explain that the end user had gaps in their own security process, and there is not a vulnerability in your system that needs to be addressed.

Yes, the user was hacked. Yes, the users account was taken over. But it was because THEY messed up, not because the system did. If I went and made 200 copies of my house key and dropped them around town with my address on it, and then I get home from work to an empty house, did my home get broken into? Do I have a case against Kwikset because their lock was compromised leading to my stuff being stolen?

/r/cybersecurity Thread Parent Link - bleepingcomputer.com
Previous
Next

Recently removed from /r/cybersecurity

What makes a good CISO? What do 'very experienced' people with multiple active positions actually do? The harsh truth I feeling right now What's your opinion on the current state of Cyber security? Mentorship Monday - Post All Career, Education and Job questions here! ATT&CK® 2020 Results Out - Wizard-Spider + Sandworm What is it like dating when your job is classified? Is it possible for an undergraduate student to obtain a Top Secret clearance? Can we collectively make an effort to better our prospects for the profession? Any feedback/experiences to help transition into cybersecurity Mentorship Monday - Post All Career, Education and Job questions here! Pathway for government work? The existence of cybersecurity internships are proof that cybersecurity requirements are BS What does a cyber security engineer do? Master in Cybersecurity Engineering

More Random Comments

Do NOT spend money on these new packs. Just gamer things ❤️ AITA for threatened to break up with my girlfriend if she declaws our three cats. Am I misunderstanding Stoicism? (Criticism) Trying to use a sniper Govt U-Turn on Srinagar Protest: MHA Admits to Soura ‘Incident’ Any Updates on ALL $MILES? Big Brother US21 - Evening Feed Discussion - August 13 2019 Today my office gave us India flags which are Eco friendly seeded products. Each of these flags contains a live seed which can be planted. Once you place the seeded item under a thin layer of soil, it will bloom within 4 to 6 weeks Luke Smith’s State of the Game concerns on MTX and vanity rewards. Whenever I try doing map callouts Any advice/tips to get a 4.0 GPA 1st semester of freshman year? AITA for telling my parents why me and my ex wife divorced and getting her kicked out? I don't own my own personality Mental health keeping me away from work