And that they engaged Crowdstrike for incident response... who missed OAuth tokens in the clear?
lol, yeah that Crowdstrike part was a funny CYA name drop
lol, yeah that Crowdstrike part was a funny CYA name drop