September 2022 Summaries
2 posts from Kinde
Filter
Month:
Year:
Post Summaries
Back to Blog
Earlier this month, Uber experienced a significant security breach when a member of the teenage hacker group LAPSUS$ gained administrative access to critical company systems, including GSuite, AWS, Slack, and OneLogin. The breach was achieved through a social engineering tactic known as MFA fatigue, where the hacker inundated an employee with multi-factor authentication requests until the employee, under pressure and prompted by a supposed co-worker, inadvertently granted access. Once inside, the hacker boldly announced their presence on Uber's Slack and released sensitive company financials, even replacing internal pages with inappropriate images and criticizing the company's treatment of drivers. This incident underscores the vulnerability of even large, data-rich companies to social engineering attacks and the necessity of employee training to recognize and prevent such security threats.
Sep 27, 2022
385 words in the original blog post.
Flexible working arrangements have become a staple at Kinde, a tech company that embraces remote and hybrid work setups to accommodate the diverse needs of its employees. This approach not only allows for inclusivity by supporting caregivers, individuals with disabilities, and neurodiverse people but also facilitates the hiring of talent regardless of geographic location, as evidenced by team members working from different parts of the world. While the company recognizes the importance of having an office space for those who need it, their core principle is to offer flexibility without a rigid policy dictating when and where work should be done. Emphasizing asynchronous communication, Kinde fosters an environment where immediate responses are not required, and information is openly shared unless sensitive. Trust is the cornerstone of their working philosophy, enabling employees to balance personal and professional commitments effectively.
Sep 14, 2022
766 words in the original blog post.