How is even having these security questions even considered safe? What is more likely, person to know your password or a name of your favorite dog that you might get from that person’s Facebook account?
Even to the point of being nonsensical. I’ve had tech support chuckle at me but the intent was clear as day. Anyone can find my mother’s maiden name. Good luck figuring out the answer I gave the bank.
I had to say my SQ answers to the bank as identity confirmation (which, them being capable of reading it (stored as plain text) is a huge security no no)
and my answers were 20 random characters. That was fun
How is even having these security questions even considered safe? What is more likely, person to know your password or a name of your favorite dog that you might get from that person’s Facebook account?
That’s why you make the answers fake ones. Like instead of your actual favorite pet, you answer lassy or airbud or something stupid like that
Even to the point of being nonsensical. I’ve had tech support chuckle at me but the intent was clear as day. Anyone can find my mother’s maiden name. Good luck figuring out the answer I gave the bank.
I had to say my SQ answers to the bank as identity confirmation (which, them being capable of reading it (stored as plain text) is a huge security no no)
and my answers were 20 random characters. That was fun
it’s not. These are very bad practice that had obvious problems from the start.
Sarah Palin’s Yahoo account was broken into during the 2008 election by guessing her security questions. If it wasn’t clear before then, it should have been clear after. No excuse for companies continuing to do this.