By @edent · CyberSecurity opsec · 14 comments · 300 words · read ~2,820 times.
For lots of online accounts, a date of birth is nothing more than a very weak second factor. The majority of places aren't checking your identity, cross-referencing your birthdate, and personalising your experience based on your Zodiac sign. At most, they'll wish you a happy birthday and / or let you recover your account by […]
Continue reading →By @edent · CyberSecurity mobile opsec sim · 5 comments · 450 words · read ~439 times.
It is tempting to think that users are to blame for their own misfortune. If only they'd had a stronger password! If only they didn't re-use credentials! If only they had perfect OpSec! If only...! Yes, users should probably take better care of their digital credentials and bury them in a digital vault. But there […]
Continue reading →By @edent · hacking opsec security · 250 words · read ~5,617 times.
I use a password manager. I have 2FA set up on everything. When an organisation asks me to set a recovery question, I generate a 32 character passphrase. I don't use my mother's maiden name or my first pet's birthday on anything sensitive. I monitor my email addresses for breaches, and I regularly check my […]
Continue reading →