Hope this isn’t a repeated submission. Funny how they’re trying to deflect blame after they tried to change the EULA post breach.

  • LUHG
    link
    fedilink
    English
    611 months ago

    That’s not 23 and me fault at all then. Basically boils down to password reuse. All i would say is they should have provided 2fa if they didn’t.

    • 52fighters
      link
      fedilink
      211 months ago

      All i would say is they should have provided 2fa if they didn’t.

      At this point, every company not using 2FA is at fault for data hacks. Most people using the internet have logins to 100’s of sites. Knowing where to do to change all your passwords is nearly impossible for a seasoned internet user.

      • conciselyverbose
        link
        fedilink
        511 months ago

        A seasoned internet user has a password manager.

        Not using one is your negligence, no one else’s.

      • @[email protected]
        link
        fedilink
        English
        111 months ago

        The sad thing is you have to balance the costs of requiring your customer to use 2FA with the risk of losing business because of it and the risk of losing reputation because your customers got hacked and suffered loss.

        The sad thing is some (actuall most) people are brain dead, you will lose business if you make them use a complicated password or MFA and it puts them in the position to make a hard call.

        They took the easy route and gave the customer the option to use MfA if they wished and unfortunately a lot of people declined. Those people should not have the ability to claim damages (or vote, for that matter)

        • @[email protected]
          link
          fedilink
          English
          111 months ago

          I feel like that argument could be made for some things, but inherently cannot apply to companies involved in personal, genetic, or financial information.