Hope this isn’t a repeated submission. Funny how they’re trying to deflect blame after they tried to change the EULA post breach.
Hope this isn’t a repeated submission. Funny how they’re trying to deflect blame after they tried to change the EULA post breach.
So forced MFA is the only way to prevent what happened? That’s basically what you’re saying, right?
Their other mechanisms would prevent credential stuffing (e.g., rate limits, comparing login locations) so how was this still successful?