Nemeski@lemm.ee to Technology@lemmy.worldEnglish · 3 months agoMeta fined $102 million for storing passwords in plain textwww.engadget.comexternal-linkmessage-square36fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkMeta fined $102 million for storing passwords in plain textwww.engadget.comNemeski@lemm.ee to Technology@lemmy.worldEnglish · 3 months agomessage-square36fedilink
minus-squareBlackmist@feddit.uklinkfedilinkEnglisharrow-up0·3 months agoI remember my bank used to ask me for the 2nd, 5th and 7th letters of my password from time to time. There’s only one realistic way they can know those to ask me. They haven’t asked me that for a while now, so I can only hope they encrypted them properly at some point.
minus-squareandrew_bidlaw@sh.itjust.workslinkfedilinkEnglisharrow-up0·3 months agoAnd you can imagine someone thinking it’s super clever and secure.
minus-square3x7x37@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up0·3 months ago I can only hope they encrypted them properly at some point Encryption is reversible, hashing isn’t. That’s why you use the latter for passwords.
I remember my bank used to ask me for the 2nd, 5th and 7th letters of my password from time to time.
There’s only one realistic way they can know those to ask me.
They haven’t asked me that for a while now, so I can only hope they encrypted them properly at some point.
And you can imagine someone thinking it’s super clever and secure.
Encryption is reversible, hashing isn’t. That’s why you use the latter for passwords.