BrianKrebs on Nostr: I should add that sometimes poor password hygiene has nothing to do with it. As I ...
I should add that sometimes poor password hygiene has nothing to do with it. As I reported in 2022, one common way fake EDR service operators gain access to police dept emails is by compromising the police department's website, and installing a backdoor shell on the site that allows them to create NEW user accounts that also can send email.
Published at
2024-11-06 16:05:50Event JSON
{
"id": "fdffb7e58b217a68e2d6aa6fe9eebc4302cd495a19ef88a503872f336f33ace7",
"pubkey": "1a5ac5b37984c5e37a11bc914029a81f025326ea7950c9475d9a3f21a494cb56",
"created_at": 1730909150,
"kind": 1,
"tags": [
[
"e",
"1e4a916824b54d65cf88a2aa2f7d8d94cfeb9495a138dc58d914d81852d5cecb",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://infosec.exchange/users/briankrebs/statuses/113436862099069610",
"activitypub"
]
],
"content": "I should add that sometimes poor password hygiene has nothing to do with it. As I reported in 2022, one common way fake EDR service operators gain access to police dept emails is by compromising the police department's website, and installing a backdoor shell on the site that allows them to create NEW user accounts that also can send email.",
"sig": "ed73f51084f8574df7509201bd101da1b93869758233d7a36f35de8c53b371104856890ea33b7fc4cbba6dd60ac6767ba29a313e822b8fd9a42a4df32704824b"
}
