Sysadmin

7536 readers

1 users here now

A community dedicated to the profession of IT Systems Administration

No generic Lemmy issue posts please! Posts about Lemmy belong in one of these communities:
[email protected]
[email protected]
[email protected]
[email protected]

founded 1 year ago

MODERATORS

[email protected]

Compromised Microsoft Key: More Impactful Than We Thought (www.wiz.io)

submitted 1 year ago by [email protected] to c/[email protected]

3 comments fedilink hide all child comments

According to Microsoft, the compromised key was inactive and therefore any access token signed by this key must be considered suspicious.

Unfortunately, there is a lack of standardized practices when it comes to application-specific logging. Therefore, in most cases, application owners do not have detailed logs containing the raw access token or its signing key. As a result, identifying and investigating such events can prove exceedingly challenging for app owners.

no comments (yet)

sorted by: hot top controversial new old

there doesn't seem to be anything here