What security risks do you see with wrong OTPs appearing in application logs?
An application is logging wrong OTPs (but not correct OTPs). I asked the application developers to not log wrong OTPs because I do not see any benefits. However, they do not want to modify the application code, and are asking me (I have no… Continue reading What security risks do you see with wrong OTPs appearing in application logs?