How so? Has the author mentioned somewhere that he was tricked into providing 2F... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		lurker_jMckQT99 5 months ago \| parent \| context \| favorite \| on: NPM debug and chalk packages compromised How so? Has the author mentioned somewhere that he was tricked into providing 2FA codes / had any sort of 2FA enabled at all?

mkfs 5 months ago [–]

A spearphishing email telling them they had to update their 2FA was the vector.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact