• FarceMultiplier
    link
    fedilink
    English
    arrow-up
    13
    ·
    2 years ago

    No website is invulnerable. Since we know from Reddit’s godawful official app they don’t do development very well, no doubt the website also has vulnerable holes.

    • femboy_link.mp4@beehaw.org
      link
      fedilink
      English
      arrow-up
      3
      ·
      2 years ago

      They didn’t access the data through a vulnerability in the code, they phished some employee credentials and access it that way.

      • FarceMultiplier
        link
        fedilink
        English
        arrow-up
        4
        ·
        2 years ago

        That in itself is a vulnerability. In my company we check for impossible travel, browser variance, etc. Credentials are only one aspect of this.