6/ In 2018, Harris learned that the weakness was worse than he'd imagined. A colleague pointed out that multi-factor authentication, which is intended to prevent attacks, was useless in an SAML attack.
When the colleagues brought the new information to the MSRC, “it was a nonstarter,” Harris said.
ProPublica /
npub19f…gulzp
2024-06-13 20:40:51
in reply to nevent1q…8vlw
Author Public Key
npub19fwwstv5dg8qsmuj9rmgf98nt9lfz5gvv67jqx6y9jtgekpcz5pqpgulzpPublished at
2024-06-13 20:40:51Event JSON
{
"id": "d114f65235ba643adb7c3f70e1137db79be41bca77307b44f08cca056f2b49ed",
"pubkey": "2a5ce82d946a0e086f9228f68494f3597e91510c66bd201b442c968cd8381502",
"created_at": 1718304051,
"kind": 1,
"tags": [
[
"e",
"0c49ea49040c941e1313a94f7577454a8ef44de7499999afe5b196bcdeaa8d99",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://newsie.social/users/ProPublica/statuses/112610774296122745",
"activitypub"
]
],
"content": "6/ In 2018, Harris learned that the weakness was worse than he'd imagined. A colleague pointed out that multi-factor authentication, which is intended to prevent attacks, was useless in an SAML attack.\n\nWhen the colleagues brought the new information to the MSRC, “it was a nonstarter,” Harris said.",
"sig": "a8b01f5e23afed50d14319d1935d5cb4ab45c3e74a2fc66b481e25890eece7320d745f28cd936083da29da3870244964c11d26a40bbf3d9abe1afd980d59da17"
}