Okta just squashed a particularly unusual bug in its software.
995 Archivesdigital security management company posted a bug fix report to its website (as spotted by The Verge) letting users know that a glitch in the system that theoretically allowed bad actors to gain access to accounts had been ironed out. Sounds normal enough, right? Well, here's the kicker: The bug could've allowed someone to log into an account without entering the passwordas long as the username was 52 characters or longer.
"During specific conditions, this could allow users to authenticate by only providing the username with the stored cache key of a previous successful authentication," Okta wrote.
It should be re-emphasized that this is no longer a concern for Okta users. The bug has been fixed. Unfortunately, it existed in the system for about three months, as Okta's report said the software had been affected since July until someone noticed on Oct. 30. That's a very long time for such a vulnerability to be present, but it's unclear at this point if anyone was negatively affected by it.
Topics Cybersecurity
(Editor: {typename type="name"/})
Best JBL deal: Save $80 on JBL Xtreme 4 portable speaker
WhatsApp's anti
10 new TV series to look forward to in summer 2020: PREVIEW
10 new TV series to look forward to in summer 2020: PREVIEW
Operation Mensch
This is the second part of our "Needs to Fix" series. Last week we talked about a number of issues w
...[Details]
Woman slams random ‘social experiments,' says what we’re all thinking
When you're sitting alone in a public space, the last thing you want is to become the unwitting subj
...[Details]
Mattel honors everyday heroes fighting coronavirus with action figure line
What do a doctor, nurse, EMT, delivery driver, and grocery store worker have in common? They're all
...[Details]
Amazon tech workers called out sick to protest working conditions
Amazon tech workers are taking a sick day on Friday to protest the tech company's treatment of their
...[Details]
NYT Strands hints, answers for April 23
If you're reading this, you're looking for a little help playing Strands, the New York Times' elevat
...[Details]
New Apple iOS text bug can crash your iPhone with just a notification
A newly discovered bug will crash your Apple iPhone or iPad for merely receiving a text notification
...[Details]
Let's all learn from the 'GMA' reporter who went on air without pants
When working from home it's extremely tempting to wear comfortable clothes 24/7. Unlike that stiff L
...[Details]
Uplifting illustrations promote hope during the coronavirus pandemic
During this time of unprecedented uncertainty, anxiety, and shared feelings of powerlessness, a grou
...[Details]
Astronomers saw one galaxy impale another. The damage was an eye
Two extremely distant galaxies appear to be ramming into each other over and over again at speeds of
...[Details]
Watch an alligator chase a dude in a kayak
Today inNature is Scary, an innocent kayaker was chased by an alligator in the Gulf Coast of Alabama
...[Details]
Gmail search just got a lot smarter, thanks to AI
James Comey found out about his firing just like you did
接受PR>=1、BR>=1,流量相当,内容相关类链接。