Huge data breach release Huge data breach release - Page 2 - Talk of The Villages Florida

Huge data breach release

Closed Thread
Thread Tools
  #16  
Old 07-07-2024, 07:08 AM
Maker Maker is offline
Veteran member
Join Date: Jul 2022
Posts: 631
Thanks: 13
Thanked 562 Times in 248 Posts
Default

Quote:
Originally Posted by Cuervo View Post
I don't understand why people use password managers in the first place.
It seems that hackers with enough effort will break into anything.
To save worries use pen and paper and keep all your password in a drawer.
Other than the information I am forced to divulge to conduct business I store everything in a backup drive.
Hope you never have a fire or bad weather that causes that list to vanish.
In the midst of a tragedy, when you need access to important sites, you will be locked out.

Hope that list is never stolen. Likely years of financial and legal problems if that happens.

Please rethink that approach.
  #17  
Old 07-07-2024, 07:30 AM
rsmurano rsmurano is offline
Gold member
Join Date: Jul 2021
Posts: 1,037
Thanks: 6
Thanked 955 Times in 485 Posts
Default

The biggest security risk is not creating your passwords the correct way and not using 2FA.
It is proven that if your password is greater than 16 characters and some of those characters are special characters, it will take years to hack. Upper and lower case don’t matter much, it’s the length and special characters.

How long does it take a hacker to crack one of your passwords in 2024? | Euronews.

Also, I use LifeLock and it alerts me every access to my accounts, say dividends or buy and sell activity, every bank transaction, every hit your identity is hit in the dark web, section on freezing a 1/2 dozen sites (more than the 3 credit bureaus), on and on.

I don’t use a password pgm mainly because I can store all mine in a safe location that is pwd protected and I will never use a pwd manager that stores your pwds in the cloud on their proprietary cloud, unless it’s Apples. I’ve used AWS and Google cloud in my prior working life and no thanks.
  #18  
Old 07-07-2024, 07:44 AM
Spartan86's Avatar
Spartan86 Spartan86 is offline
Senior Member
Join Date: Mar 2022
Posts: 127
Thanks: 12
Thanked 49 Times in 38 Posts
Default

A lot of good suggestions here. One other I heard years ago from a security discussion - make sure you have a solid password and 2FA enabled for your email. Your email is quite often the path to password resets and authentication codes which bad actors could use to obtain access.
  #19  
Old 07-07-2024, 07:51 AM
MidWestIA MidWestIA is offline
Veteran member
Join Date: May 2021
Posts: 509
Thanks: 0
Thanked 184 Times in 141 Posts
Default too many

there have been too many hacks of BIG companies

FREEZE YOUR CREDIT they already have you
  #20  
Old 07-07-2024, 07:55 AM
CoachKandSportsguy CoachKandSportsguy is offline
Sage
Join Date: Jan 2019
Location: Marsh Bend
Posts: 3,654
Thanks: 647
Thanked 2,650 Times in 1,297 Posts
Default

LOL! password managers and strong passwords are not the savior you think they are.

If your passwords are stolen through malware when you are typing them, which doesn't involve brute force or quality of passwords, also called phishing, then one is still toast. If you have a sim swapping event in combo, you are toast with 2FA.

If you think everything is fine, and someone uses your Microsoft Windows 365 password, they have access to all your password backup files. Nothing will save you if your passwords are stolen and someone wants to get into your accounts. If they find you have 2FA, then most likely they will move on to the next account. If they find out you have a lot of money, such as banking apps on your phone or stolen USPS mail, they will find a way to sim swap your phone by corrupting a phone company employee, kgb style.

What does help is:
1) always use InPrivate or Incognito modes in browsers when accessing sensitive accounts.
2) Use a hard key instead of a software password:
Options include: hardware key fob mfa device - Google Search
Impossible to beat a hard key with software, but have a backup hidden somewhere just in case. .
3) Never re-use passwords for sensitive sites.
4) Never have sensitive apps with saved passwords on your phone, especially banking apps where apple store employees can see your account balances, numbers and location.
5) Use the strongest malware protection on your computing devices which you can buy

good luck. . .

former IT / finance guy
  #21  
Old 07-07-2024, 08:41 AM
oneclickplus's Avatar
oneclickplus oneclickplus is offline
Senior Member
Join Date: May 2018
Posts: 414
Thanks: 15
Thanked 741 Times in 273 Posts
Default

Quote:
Originally Posted by thevillager1988 View Post
IMHO 2-factor authentication is the answer. For every account. Should be offered for every account. Fortunately it is for financials.
At a minimum, you also want 2FA on your email account. This is because email is the mechanism for changing passwords (where a link to reset password is sent). If your email doesn't support 2FA, you need a new email account.
  #22  
Old 07-07-2024, 09:47 AM
CFrance's Avatar
CFrance CFrance is offline
Sage
Join Date: Dec 2011
Location: Tamarind Grove/Monpazier, France
Posts: 14,696
Thanks: 390
Thanked 2,126 Times in 875 Posts
Default

Quote:
Originally Posted by Maker View Post
One of the best password managers is KeePass. Perhaps it is the best out there.
Free. Donate if you want (I did).
Can generate passwords of any length, character types, or complexity.
Filters to configure passwords to not use certain characters like 1 l L i I 0 o O
Use different ID and password for every site. Whatever you want.
Community reviewed and no security flaws.
One master password encrypts the entire database. Pick a long passphrase and it is not crackable (even by the NSA) if stolen.
You have exclusive control over your database. Safe to store on your cloud for multiple devices to access.
No single place for hackers to extract private information.
Able to store and URLs. Never click a link sent to your email, always go to the known trusted site.
Integrates into browsers to launch a URL, then send credentials, without wasting time with copy\paste. Uses an encrypted process to be safe from key loggers.
Hundreds of add-ins to make things work in custom ways.
Notes area to store account info or other important info.
Fields can be used for any text\numbers you want.
A couple of questions, as it sounds like you are knowledgeable. 1. What do you think of RoboForm?
2. Can you give an example of a long passphrase?
3. What is meant by No single place for hackers to extract private information.
Thanks for any info.
__________________
It's harder to hate close up.
  #23  
Old 07-07-2024, 10:11 AM
Caymus Caymus is offline
Gold member
Join Date: Mar 2019
Posts: 1,249
Thanks: 22
Thanked 1,127 Times in 554 Posts
Default

I found this interesting about the information that can be stored in a printer.

https://www.msn.com/en-us/money/othe...27658fe4&ei=28
  #24  
Old 07-07-2024, 10:29 AM
TVTVTV TVTVTV is offline
Senior Member
Join Date: Sep 2022
Posts: 105
Thanks: 456
Thanked 46 Times in 31 Posts
Default

Quote:
Originally Posted by Altavia View Post
Password Managers are your friend.

Security through obscurity?

"I know this might sound funny, but what's an extra 1.5 billion passwords?” Daniel Card, a self-proclaimed Cyber Ninja Warrior and founder of the PwnDefend security consultancy, said.

He has a point: once such databases reach a tipping point regarding unique password size, it makes precious little difference how many new ones get added.

“When we look at how people create passwords,” Card said, “is that going to change the world? Probably not.

I don't think this changes the threat actors’ capability in any meaningful way.”


New Security Alert: Hacker Uploads 10 Billion Passwords To Crime Forum—Report
I don't trust password managers storing such important info "in the cloud." As we've seen, every type of business has been hacked. They are certainly not 100% hack proof.
  #25  
Old 07-07-2024, 10:31 AM
Cuervo Cuervo is offline
Senior Member
Join Date: Mar 2014
Posts: 339
Thanks: 0
Thanked 285 Times in 153 Posts
Default

Quote:
Originally Posted by Maker View Post
Hope you never have a fire or bad weather that causes that list to vanish.
In the midst of a tragedy, when you need access to important sites, you will be locked out.

Hope that list is never stolen. Likely years of financial and legal problems if that happens.

Please rethink that approach.
Stolen by who alien from another planet or ghost hiding under my bed from the dark side. Do you really think someone would break into my house ignore everything they could carry out to look for a book with my passwords that they don't even know it exists.

Give me a break, if you haven't noticed hackers are breaking into almost any site they want. Today many are having their identity stolen, credit card fraud is on the rise, even hospitals have been shut down for ransom.
  #26  
Old 07-07-2024, 10:37 AM
Cuervo Cuervo is offline
Senior Member
Join Date: Mar 2014
Posts: 339
Thanks: 0
Thanked 285 Times in 153 Posts
Default

Quote:
Originally Posted by Maker View Post
Hope you never have a fire or bad weather that causes that list to vanish.
In the midst of a tragedy, when you need access to important sites, you will be locked out.

Hope that list is never stolen. Likely years of financial and legal problems if that happens.

Please rethink that approach.
I do have many passwords, but the important ones which aren't that many I store in my head and if a thief breaks into my house and kills me and finds the book, it not going to matter anyway.
  #27  
Old 07-07-2024, 10:42 AM
BlueStarAirlines's Avatar
BlueStarAirlines BlueStarAirlines is offline
Senior Member
Join Date: Jun 2021
Posts: 377
Thanks: 2,523
Thanked 393 Times in 163 Posts
Default

Quote:
Originally Posted by Maker View Post
One of the best password managers is KeePass. Perhaps it is the best out there.
Free. Donate if you want (I did).
.
I use 1Password. Not free, but is one of the best out there. I try to stay away from free software

That being said, CoachK's post is the best advice.
  #28  
Old 07-07-2024, 11:11 AM
askcarl askcarl is offline
Senior Member
Join Date: Mar 2010
Posts: 135
Thanks: 1
Thanked 51 Times in 28 Posts
Default

12345 has worked for decades.
  #29  
Old 07-07-2024, 01:17 PM
Cuervo Cuervo is offline
Senior Member
Join Date: Mar 2014
Posts: 339
Thanks: 0
Thanked 285 Times in 153 Posts
Default

Let's stop and think about it, I had suggested whatever passwords you have do not go to a third party or to the program that pops up asking if you want to save your password. I suggested keeping a log at home offline and a poster raised a number of scenarios, as fire, theft and hurricane which would demolish the house. I have two or three important contacts,
Bank, Broker, Email account. I personally know my broker so he will deal with any access I need; I know what bank I deal with and with proper ID they will deal with any problem that arises and my email I've had for so long the password is tattoo in my brain and if anyone dose access my email, they'll have to deal with all the spam. The other sites are trivial and if you forget the password as far, as I know these sites will send you an email instructing you how to get a new password. I believe the less information you share with others the safer you are.
  #30  
Old 07-07-2024, 01:33 PM
Ecuadog's Avatar
Ecuadog Ecuadog is offline
Sage
Join Date: Jul 2011
Location: Limbo
Posts: 2,531
Thanks: 0
Thanked 1,241 Times in 583 Posts
Default

Quote:
Originally Posted by askcarl View Post
12345 has worked for decades.
Not complex enough. I use 1234567.
Closed Thread

Tags
passwords, huge, massive, advantage, change

Thread Tools

You are viewing a new design of the TOTV site. Click here to revert to the old version.

All times are GMT -5. The time now is 08:56 AM.