They’re blaming customers for not having good cybersecurity practices instead of themselves for not having good cybersecurity practices.

  • The Bard in Green@lemmy.starlightkel.xyz
    link
    fedilink
    English
    arrow-up
    2
    ·
    10 months ago

    From a PSA stand point, 23andMe makes a really good point here.

    From a Legal / Responsible Data Custodian perspective, it’s the same collective responsibility bullshit that the oil industry likes to shit out about climate change.

    • doppelgangmember@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      10 months ago

      Uhh yeah you can…

      Mandatory 2FA with phone and password retry count. If it’s targeted using breach data of email/passwords then the 2FA should still stop the majority…

      • brbposting@sh.itjust.works
        link
        fedilink
        arrow-up
        0
        ·
        10 months ago

        Shouldn’t service providers be hashing the plaintext passwords that show up in dark web leaks to see if matching users reused those passwords?

        • folkrav@lemmy.ca
          link
          fedilink
          arrow-up
          1
          ·
          10 months ago

          Wouldn’t really be of any use if they’re doing things right and salt their hashes