Security Lapses at Vanguard, Schwab
- Thread starter Onward
- Start date
mpeirce
Thinks s/he gets paid by the post
Nothing is fool proof...
State Department Trashed 30,000 Log-in Key Fobs After Hack - Nextgov.com
Never depend on the 100% invincibility of any solution. But do practice reasonable measures to secure your accounts.
NW-Bound
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
- Joined
- Jul 3, 2008
- Messages
- 35,712
The above article has this:
Whenever a threat actor uses a "rootkit," a worm that allows hackers to mask virtually all their activity, investigations become incredibly difficult, at times impossible, said Dickson, also a principal at cyber consulting firm Denim Group.
This points to a major flaw of the OS. They made it so complicated that they could not tell what pieces of software belong and what does not. Bad, bad programmers!
MRG
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
- Joined
- Apr 9, 2013
- Messages
- 11,078
+1
Megacorp had to replace all theirs too. They also had a notion of a master password, don't know if it was device specific or global to their implementation. That always made me a little sceptical.
eta2020
Thinks s/he gets paid by the post
- Joined
- Sep 13, 2013
- Messages
- 1,248
I agree but Two-factor authentication is about as secure as it gets.
You just do your best.
If someone got into an account I would think it would be hard to get the money out and sent to the hacker. Wouldn't the broker require a letter with wire instructions and would the broker send to funds to a name other than the account holder?
May be a good idea to leave instructions that funds should never be wired unless I call and answer certain questions.
May be a good idea to leave instructions that funds should never be wired unless I call and answer certain questions.
For long passwords that are relatively easy to memorize, consider the xkcd Password Generator.
Sent from my iPhone using Early Retirement Forum
Sent from my iPhone using Early Retirement Forum
Dreaming of Freedom
Recycles dryer sheets
- Joined
- Jan 14, 2015
- Messages
- 206
Can someone recommend a good password app?
Sent from my EVO using Early Retirement Forum mobile app
Sent from my EVO using Early Retirement Forum mobile app
GTFan
Thinks s/he gets paid by the post
Password Safe
I use it for all of our financial stuff. Note that you absolutely MUST keep multiple backup copies of your safe (data file) on different devices because if you lose or trash your safe it's going to be a bad day. Mine creates totally random passwords with mixed case, numbers, special chars etc. so you never care what the PW is for a site, you just copy and paste it from the safe using your master safe password.
So if you lose the safe, you've lost all your passwords.
I use it for all of our financial stuff. Note that you absolutely MUST keep multiple backup copies of your safe (data file) on different devices because if you lose or trash your safe it's going to be a bad day. Mine creates totally random passwords with mixed case, numbers, special chars etc. so you never care what the PW is for a site, you just copy and paste it from the safe using your master safe password.
So if you lose the safe, you've lost all your passwords.
Last edited:
I use Password Safe as well. First installed it over 10 years ago. Since then, I have no idea what any of my user IDs or passwords are, except of course the master password for the safe. I just copy/paste or drag/drop from the database to the browser. Logging on is incredibly fast. As I said before, my user IDs and passwords are randomly generated to conform to the maximum strength allowed by each login site. I also store security questions and answers and other useful data like PINs, contact names, phone numbers, and URLs.
Every time I add or change something, I immediately backup the data file and copy it to a second PC as well as my Android smartphone where I run the mobile version of Password Safe.
Every time I add or change something, I immediately backup the data file and copy it to a second PC as well as my Android smartphone where I run the mobile version of Password Safe.
