> Why do employees even have access to tools that allow them to take over accoun... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jsjohnst on July 16, 2020 \| parent \| context \| favorite \| on: Hackers take over prominent Twitter accounts in si... > Why do employees even have access to tools that allow them to take over accounts? It’s commonly done for customer service purposes at many companies and is heavily audit trailed and access controlled (if the company is doing it right).

saagarjha on July 16, 2020 [–]

Guess they didn't do it right here…

jsjohnst on July 18, 2020 | [–]

I’ve seen nothing so far to indicate they didn’t have heavy audit logging and access control. They just had an employee who knowingly or unknowingly violated company policy.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact