[Lex Computer & Tech Group/LCTG] Password Manager

[Denise]

But, (excuse my ignorance) what does this have to do with break ins re 2FA? In other words, if I’m on my computer, and a reputable site (paypal, etc.) asks for the 2FA code, and I provide it, are you saying there is still a danger of becoming compromised by that?  thanks  denise

 

Yes Denise, that is exactly what I am saying

 

For example Microsoft had a breach in their Active Directory software. So every business customer who is using that software may also be impacted. And if that customer is another software company or makes industrial machines and software, they maybe affected too. And on and on it goes until all of them apply the fixes. Does that help?

 

More recently there was something with SOHO routers from Cisco and one other maker. These are small businesses that may not even know they are affected or may not have the resources to do anything.  Hope that helps,   Smita Desai 



Smita: in English? (sorry; newbie-ish; not understanding a lot of what you said) Are you saying that there are more and more break ins even when there IS  2FA? Thanks;  denise 

 

Far more than you would think if you subscribe to CISA vulnerabilities emails….. We only hear about the large companies, but not much about the secondary ones ….latest one was Xfinity, that if I remember correctly had to do with MoveIt – a file transfer software made by Progress Software used by many large enterprises including financial service companies. …..Same for Solar Winds…. Another example is Okta – a company that makes two factor authentication. ….

 

Smita Desai

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.toku.us/pipermail/lctg-toku.us/attachments/20240203/888a72e5/attachment.htm>