... darkrealms ...

Forums before death by AOL, social media and spammers... "We can't have nice things"
alt.privacy
Discussing privacy, laws, tinfoil hats
112,125 messages
[ << oldest | < older | list | newer > | newest >> ]
Message 110,358 of 112,125
Alan Browne to Chris
Re: RockYou2024 leak of 10 billion passw
10 Jul 24 19:23:09
   XPost: misc.phone.mobile.iphone, alt.comp.os.windows-10, comp.mobile.android   
   XPost: alt.os.linux, comp.sys.mac.system   
   From: bitbucket@blackhole.com   
      
   On 2024-07-09 18:30, Chris wrote:   
   > Alan Browne  wrote:   
   >> On 2024-07-08 03:59, Chris wrote:   
   >>> Alan Browne  wrote:   
   >>>> On 2024-07-07 17:39, Chris wrote:   
   >>>>> Alan Browne  wrote:   
   >>   
   >>>>>> Why Passkeys should be used wherever financial transactions or sensitive   
   >>>>>> information are concerned.  Or at least TFA.   
   >>>>>   
   >>>>> Or, crazy idea, tighten up personal privacy laws like some ridicule the   
   EU <-- [AAA]   
   >>>>> for.                       ------ [BBB] --------   
   >>>>>   
   >>>>> It would certainly crystallise minds if companies risked fines of 10% of   
   >>>>> global turnover.   
   >>>>   
   >>>> I don't disagree with what you wish, but it will have 0 effect on people   
   >>>> with bad security practices   
   >>>   
   >>> I disagree. It will help proactively protect them from themselves. Unlike   
   >>> the current system in the US where the only response is reactively via law   
   >>> suits years after people's lives have been affected.   
   >>   
   >> You're talking about "personal privacy laws" which is not directly   
   >> related to computer security.   
   >   
   > We're talking about data protection - I miswrote when I said personal   
   > privacy - laws. Which for personal digital data requires appropriate   
   > computer security on the side of the data organisation.   
      
   Which is widely practiced by most corps. and not by some.   
      
   >> One is policy implementation the other is   
   >> security implementation.   
   >   
   > They're part of the same process.   
      
   Not at all.  Security is defensive to principally protect the assets and   
   operations of the company (customer info being assets too);   
   privacy is many things, but unfortunately it's a commodity to profit   
   from unless there are laws to contain it.   
      
   >   
   >>>> and 0 effect on criminals attempting to   
   >>>> break into systems.   
   >>>   
   >>> Again, disagree. If an org is forced to comply with stricter regulations   
   >>> regarding data security then that will automatically reduce the target   
   >>> surface.   
   >>   
   >> Now you changed gears (was: [AAA] "personal privacy").   
   >   
   > I didn't mention AAA. I mentioned EU and by implication, GDPR.   
      
   [AAA] was a label I added to the text to point to your "personal privacy   
   laws" mention.  Look higher in the thread - it's still there.   
   Here - I've add BBB to it (above about 10 lines from top).   
      
   --   
   "It would be a measureless disaster if Russian barbarism overlaid   
     the culture and independence of the ancient States of Europe."   
   Winston Churchill   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)
[ << oldest | < older | list | newer > | newest >> ]