They’re blaming customers for not having good cybersecurity practices instead of themselves for not having good cybersecurity practices.

  • @[email protected]
    link
    fedilink
    21 year ago

    Shouldn’t service providers be hashing the plaintext passwords that show up in dark web leaks to see if matching users reused those passwords?

    • folkrav
      link
      fedilink
      41 year ago

      Wouldn’t really be of any use if they’re doing things right and salt their hashes

    • @[email protected]
      link
      fedilink
      31 year ago

      They typically do, but that doesn’t stop hackers from posting the plaintext.

      The real solution is to never store plaintext and to use MFA.