Posts by ericazelic@infosec.exchange
 (DIR) Post #AQ9bzcYyFhkKdmfW2i by ericazelic@infosec.exchange
       2022-12-01T06:07:30Z
       
       0 likes, 0 repeats
       
       HTTP Basic authentication with lack of 2FA internet facing providing access to multiple clients' confidential data once logged in.Severity? (plz boost my toot?)#infosec #cybersecurity #authentication #http#pentesting #pentest
       
 (DIR) Post #AQ9cLccKjOtvBCjSee by ericazelic@infosec.exchange
       2022-12-01T06:17:57Z
       
       0 likes, 0 repeats
       
       @jeff I think it depends on how you read the circumstances, but appreciate your input nonetheless
       
 (DIR) Post #AQ9cThMixf6IDsHZNg by ericazelic@infosec.exchange
       2022-12-01T06:20:12Z
       
       0 likes, 0 repeats
       
       @jeff   good point.  In that case it would be considered a data breach
       
 (DIR) Post #AQARlIm4E0XWpTHta4 by ericazelic@infosec.exchange
       2022-12-01T15:55:24Z
       
       1 likes, 0 repeats
       
       @staticnoisexyz @Freyja @mav @jeff @andreashappe yes, it may be the best model for that.  I guess if there was a better way to apply the leaked password policy and naming convention for authentication and critical finding behind the door, I wouldn't struggle with this as much.