Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I got a suspicious password reset request email today from Meta but it landed in my inbox. Luckily I have MFA and after checking audit logs inside IG upon logging in, I did not see anything suspicious.


2FA did not help according to the primary finding

https://news.ycombinator.com/item?id=48359102


In that case it sounds like the last waves of malicious reset attempts happened after the patch was put in place




Consider applying for YC's Fall 2026 batch! Applications are open till July 27.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: