ioc.exchange is one of the many independent Mastodon servers you can use to participate in the fediverse.
INDICATORS OF COMPROMISE (IOC) InfoSec Community within the Fediverse. Newbies, experts, gurus - Everyone is Welcome! Instance is supposed to be fast and secure.

Administered by:

Server stats:

1.4K
active users

#aleksandrermakov

0 posts0 participants0 posts today

“The waited five days to test the contractor's admin account credentials by logging onto Medibank's Exchange server. About 11 days after that, they got into Medibank's "Virtual Private Network" (VPN) which controlled remote access to its corporate network. They were only able to do so because Medibank, the $10 billion juggernaut and keeper of secrets for more than 9 million people, didn't require what's called "multi-factor authentication" for its , according to the commissioner's filings. This requirement for two or more ways of proving a user's identity was even then a bog-standard safeguard for large organisations.”

/ / / / <abc.net.au/news/2024-06-22/med>

ABC News · How Medibank allegedly ignored the warning signs in one of Australia's worst cybersecurity breachesBy Josh Robertson