Uber & Thycotic: Are Password Vaults a Huge Security Vulnerability?by@jamesbores
41,438 reads

Uber & Thycotic: Are Password Vaults a Huge Security Vulnerability?

tldt arrow
EN
Read on Terminal Reader
Read this story w/o Javascript

Too Long; Didn't Read

Security is complicated and managing credentials is tough. A 17 year old hacker, TeaPot, got hold of the credentials of an Uber contractor and began sending multi factor authentication requests to them repeatedly. Once the contractor got annoyed and hit accept, their account was used to access a script with admin credentials to Uber's password vault, Thycotic, giving them access to almost everything else.

Companies Mentioned

Mention Thumbnail
Mention Thumbnail
featured image - Uber & Thycotic: Are Password Vaults a Huge Security Vulnerability?
James Bore HackerNoon profile picture

@jamesbores

James Bore

Security professional, homebrewer, amateur butcher, techie, board gamer, and beekeeper.


Receive Stories from @jamesbores

react to story with heart

RELATED STORIES

L O A D I N G
. . . comments & more!