TLDR: The LastPass hack made me question my digital financial security. All the income and financial planning in the world won’t help me if I wake up to drained financial accounts through some targeted hacking. ($140K TC 🥜) Noting which banks and brokerages offer 2FA (two factor authentication) isn’t in itself a telling feature - the front door might be securely locked but the side window could be wide open. For anyone that can point me in the right direction for research in this area or has inside knowledge, which banks and/or brokerages are spending the most on security and/or are the most secure when it comes to the prospect of future hacking attempts? Addendum: Fortune 500 companies aren’t questioning if they will get hacked, they’re questioning when and how they will get hacked and then how they will deal with it to minimize the damage. Given the various state actors around the world that are constantly looking for ways into various companies by nefarious means, I fear for the day that I log into my bank or brokerage account and see an account balance of zero. FDIC insurance in the USA from the government supposedly will cover everyone ($250K), but if a hack is perpetrated on a massive scale, the fulfillment aspect worries me. #bankersfinancial #hackerati #cybersecurity
Working Parents
Yesterday
730
What do you think is wrong with a kid who got rejected by 9 colleges?
Tech Industry
32m
289
Rejected my TikTok offer. Something I’m gonna regret?
Tech Industry
Yesterday
2420
Quitting this Slave life
Tech Industry
Yesterday
1927
The end of Backdoor Roth?!
India
Yesterday
814
Modi is a legend, will be remembered for centuries to come
Hard to offer a holistic evaluation as a consumer. One good indicator I've found is whether they support hardware MFA. A vast majority do not; the ones who do obviously at least understand the consumer demand for proper security, if nothing else. Most seem to just use SMS like it's the 00's or even KBAs like it's the 90's. PS you should be using a self-hosted password manager, never a commercial service where you're storing your passwords on someone else's server and have NO way of auditing their security.