@[email protected]M to [email protected]English • 8 months agoNo federal privacy law? After the 23andMe hack, it's time to take actiontechnical.lyexternal-linkmessage-square4fedilinkarrow-up144arrow-down10
arrow-up144arrow-down1external-linkNo federal privacy law? After the 23andMe hack, it's time to take actiontechnical.ly@[email protected]M to [email protected]English • 8 months agomessage-square4fedilink
minus-square@LmaydevlinkEnglish4•8 months agoThe problem here was people reusing passwords. You really aren’t going to stop people doing that. But it could have been easily prevented by forcing multi factor authentication. I think that should be the minimum required by any company holding personal information.
minus-squareBlakelinkfedilinkEnglish6•edit-28 months ago2fa is a pain in the ass - especially for opsec if they require a mobile number or similar. the onus is fully on the account holder to set and remember a password (a la private keys - you do use monero right?) though having your genetic code hacked is pretty 2023 vibes
The problem here was people reusing passwords.
You really aren’t going to stop people doing that.
But it could have been easily prevented by forcing multi factor authentication.
I think that should be the minimum required by any company holding personal information.
2fa is a pain in the ass - especially for opsec if they require a mobile number or similar.
the onus is fully on the account holder to set and remember a password (a la private keys - you do use monero right?)
though having your genetic code hacked is pretty 2023 vibes