> Well, as it turns out, the opposite was true and the fear was unfounded. The vast majority of password leaks we've seen over the past decade have been due not to malware but rather server compromises.
That's absurd. I can count on one hand how many account I need to be extremely secured. Accounts that will actually affect me if they were hacked.
- Works
- Bank
- Paypal
- Google
- AWS
All have a different and secure passwords.
The remaining accounts that I care about but won't affect me much if they were hacked use variation of a single password.
The accounts where I don't care use a simple password.
If any one of the first one are hacked or leaked, well I was already screwed I guess, the service was hacked... just hope that they take care of it.
If I get hacked, I just hope that I catch it before I log into one of theses accounts, which funnily enough, doesn't happen that much (except for work, but that's mostly at works so not my responsibility).
If any other password get leaked? Well not too bad, I request a new password and that's it.
> The single points of failure offered by servers are far more valuable now than the unwashed masses of networked user computers.
It's true up until it's no longer the case. So many people use cloud backed password manager too... your point currently apply to them too.
You see the big leaks but you don't see the peoples that get their passwords stolen from their computers, it's not new worthy.
That's absurd. I can count on one hand how many account I need to be extremely secured. Accounts that will actually affect me if they were hacked.
- Works - Bank - Paypal - Google - AWS
All have a different and secure passwords.
The remaining accounts that I care about but won't affect me much if they were hacked use variation of a single password.
The accounts where I don't care use a simple password.
If any one of the first one are hacked or leaked, well I was already screwed I guess, the service was hacked... just hope that they take care of it.
If I get hacked, I just hope that I catch it before I log into one of theses accounts, which funnily enough, doesn't happen that much (except for work, but that's mostly at works so not my responsibility).
If any other password get leaked? Well not too bad, I request a new password and that's it.
> The single points of failure offered by servers are far more valuable now than the unwashed masses of networked user computers.
It's true up until it's no longer the case. So many people use cloud backed password manager too... your point currently apply to them too.
You see the big leaks but you don't see the peoples that get their passwords stolen from their computers, it's not new worthy.
It's also the classical: it won't happen to me.