107
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 03 Jan 2024
107 points (94.2% liked)
Cybersecurity
5404 readers
76 users here now
c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.
THE RULES
Instance Rules
- Be respectful. Everyone should feel welcome here.
- No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
- No Ads / Spamming.
- No pornography.
Community Rules
- Idk, keep it semi-professional?
- Nothing illegal. We're all ethical here.
- Rules will be added/redefined as necessary.
If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.
Learn about hacking
Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub
Notable mention to !cybersecuritymemes@lemmy.world
founded 1 year ago
MODERATORS
From a PSA stand point, 23andMe makes a really good point here.
From a Legal / Responsible Data Custodian perspective, it's the same collective responsibility bullshit that the oil industry likes to shit out about climate change.
The issue isn't just reuse of passwords. Only about 14,000 accounts were breached because of bad passwords. The problem is that those 14k accounts allowed bad actors to access the personal information of nearly 7 million people. It's less "you shouldn't have reused your password," it's more "your neighbor's cousin's sister-in-law's nephew shouldn't have reused his password"
... And you should not opt in to sharing data with people whose security practices you don't know.
Don't print your SSN and give it to your inlaws or your grandma. Or your credit card info or anything else.
While it's not the point 23andMe wants to make here, it is an absolutely horrible idea to allow a company to access, catalog and sell your DNA information. Shame they didn't touch on that point.