They’re blaming customers for not having good cybersecurity practices instead of themselves for not having good cybersecurity practices.

  • brbposting
    link
    fedilink
    arrow-up
    2
    ·
    11 months ago

    Shouldn’t service providers be hashing the plaintext passwords that show up in dark web leaks to see if matching users reused those passwords?

    • folkrav@lemmy.ca
      link
      fedilink
      arrow-up
      4
      ·
      11 months ago

      Wouldn’t really be of any use if they’re doing things right and salt their hashes

    • sugar_in_your_tea
      link
      fedilink
      arrow-up
      3
      ·
      11 months ago

      They typically do, but that doesn’t stop hackers from posting the plaintext.

      The real solution is to never store plaintext and to use MFA.