• Lmaydev@programming.dev
    link
    fedilink
    English
    arrow-up
    5
    arrow-down
    1
    ·
    1 year ago

    The problem here was people reusing passwords.

    You really aren’t going to stop people doing that.

    But it could have been easily prevented by forcing multi factor authentication.

    I think that should be the minimum required by any company holding personal information.

    • Blake
      link
      fedilink
      English
      arrow-up
      6
      ·
      edit-2
      1 year ago

      2fa is a pain in the ass - especially for opsec if they require a mobile number or similar.

      the onus is fully on the account holder to set and remember a password (a la private keys - you do use monero right?)

      though having your genetic code hacked is pretty 2023 vibes