this post was submitted on 26 Jan 2024
320 points (98.5% liked)

Technology

59569 readers
4136 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

23andMe admits hackers stole raw genotype data - and that cyberattack went undetected for months | Firm says it didn't realize customers were being hacked::Firm says it didn't realize customers were being hacked

you are viewing a single comment's thread
view the rest of the comments
[–] pineapplelover@lemm.ee 7 points 10 months ago (2 children)

You have a point. However, I think they should've forced 2fa from the start.

[–] Kushia@lemmy.ml 6 points 10 months ago (1 children)

Everyone already has the hardware for 2fa in their pockets too. This was simply a decision this company made to minimise barriers to their customers wallets.

[–] pineapplelover@lemm.ee 2 points 10 months ago

Maybe a lot of us do but the general population might not even know what hardware tokens are and if they exist.

[–] sir_reginald@lemmy.world -4 points 10 months ago (1 children)

I'm all for security, but god I hate forced 2fa. I'm a power user with a password manager that generates 64 characters long random passwords, different for each site. I don't want to be bothered to take my phone every time I want to login.

[–] Saik0Shinigami@lemmy.saik0.com 2 points 10 months ago (1 children)

Use a password manager that also does totp.

[–] pineapplelover@lemm.ee 2 points 10 months ago (1 children)

If this guy is this lazy then this might be a good option? Bitwarden comes with one included but I still use a separate app (Aegis) and my yubikey.

[–] sir_reginald@lemmy.world 1 points 10 months ago* (last edited 10 months ago) (1 children)

If this guy is this lazy

I try to keep my fingers in my keyboard as much as possible and having to take out my phone is just a waste of time. I do not need 2fa. Let me do my own security.

Maybe requiring 2fa for passwords shorter than 60 characters would be a good solution. Most people would use 2fa but people with strong passwords can live without it.

[–] pineapplelover@lemm.ee 1 points 10 months ago

I highly disagree with not having 2fa. Even having one in your password manager, allowing you to not take fingers off of keyboard is better than nothing.