XPost: misc.phone.mobile.iphone, alt.comp.os.windows-10, comp.mobile.android
XPost: comp.sys.mac.system, alt.privacy
From: ithinkiam@gmail.com
Alan Browne wrote:
> On 2024-07-07 17:39, Chris wrote:
>> Alan Browne wrote:
>>> On 2024-07-06 19:28, Mickey D wrote:
>>>>
>>>> "Threat actors could exploit the RockYou2024 password compilation to
>>>> conduct brute-force attacks and gain unauthorized access to various online
>>>> accounts used by individuals who employ passwords included in the
dataset,"
>>>> the team explained.
>>>
>>> Why Passkeys should be used wherever financial transactions or sensitive
>>> information are concerned. Or at least TFA.
>>
>> Or, crazy idea, tighten up personal privacy laws like some ridicule the EU
>> for.
>>
>> It would certainly crystallise minds if companies risked fines of 10% of
>> global turnover.
>
> I don't disagree with what you wish, but it will have 0 effect on people
> with bad security practices
I disagree. It will help proactively protect them from themselves. Unlike
the current system in the US where the only response is reactively via law
suits years after people's lives have been affected.
> and 0 effect on criminals attempting to
> break into systems.
Again, disagree. If an org is forced to comply with stricter regulations
regarding data security then that will automatically reduce the target
surface.
However, criminals can be very smart and will change tactics.
> The internet grew up from nothing to everywhere all at once and the
> security implications lagged that by near 20 years.
Which is why we're now seeing more social engineering attacks nowadays that
technical attacks. I'm far less worried about malware today than I used to
be.
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)
|
