23andMe tells victims it's their fault that their data was breached | TechCrunch - eviltoast

They’re blaming customers for not having good cybersecurity practices instead of themselves for not having good cybersecurity practices.

  • doppelgangmember@lemmy.world
    link
    fedilink
    arrow-up
    17
    ·
    10 months ago

    Uhh yeah you can…

    Mandatory 2FA with phone and password retry count. If it’s targeted using breach data of email/passwords then the 2FA should still stop the majority…

    • brbposting@sh.itjust.works
      link
      fedilink
      arrow-up
      2
      ·
      10 months ago

      Shouldn’t service providers be hashing the plaintext passwords that show up in dark web leaks to see if matching users reused those passwords?

      • folkrav@lemmy.ca
        link
        fedilink
        arrow-up
        4
        ·
        10 months ago

        Wouldn’t really be of any use if they’re doing things right and salt their hashes