The original post: /r/cybersecurity by /u/Jungleexplorer on 2024-11-18 21:37:59.
I understand the danger that exist, but the problem is, the harder they try to FORCE people to become more secure, the more insecure they make us.
It used to be that you could log with your username and password. Then, they started requiring you to verify via email in some cases. Today, none of that works in most cases. It does not matter if you know your username, password, and email. None of that will get you back into your account. So why even have them anymore??? If a username, password, and email verification are no longer considered “Secure” why even have them AT ALL?! It makes no freaking sense.
The problem I have with all of this, is that every time they demand you divulge more and more personal information about yourself, in order to “Make Sure it is YOU”, that information gets stored in a database somewhere, which will eventually get hacked, and then all that personal identity information will end up on the dark web for crooks to use. You know I am telling the truth. It has happened countless times already. This is the exact reason why usernames, passwords, mother’s maiden name, first pet, emails etc, etc, etc, are no longer considered secure.
I just had a website (that I have had an account with for over ten years) refuse to let me access my account unless I provide Biometric verification to them. Are you F*ck**n kidding me!!! Yeah sure, here! Let me give you my fingerprints, iris scan, and DNA so you can get that on file for someone to steal. I told them to go screw themselves.
It has just gotten ridiculous. If in our efforts to keep people secure, we lock them out of their accounts, what is the point?