No Report Means No Damage?
When personal information (possibly passwords included) of thousands or millions of people are breached, we wouldn’t need to anticipate that every one of the thousands or millions will actually suffer damages. It would perhaps be too much for criminals whose resources are not unlimited.
It doesn’t mean, however, that we don’t have to take the breach seriously. Some of the thousands or millions who are picked up by the bad guys as valuable ones might well have to suffer serious damages. And, I don’t think that many of them are willing to share their unpleasant experiences in public.
Anyway, what we should be most cautious is the leak of secret credentials (passwords), which could well have the most serious consequences . Then,
A. We should refrain from reusing the same password in case the passwords are stored in plain text.
B. We should make our passwords the strongest possible in case the hashed credentials are leaked.
While it seems a daunting job to achieve both at the same time, a good tool could change the situation altogether.
What we offer as a valid tool is Mnemonic Gateways leak-proof password manager powered by citizens’ non-volatile autobiographic memory.
Please refer to “Password Manager with No Password Vault”
Well, aren’t you thinking, by any chance, that the problem of passwords would be gone where the password is removed? — The attack surface of the password would be removed indeed, alas, together with the defence surface of the password. An attack surface being a part of a defense surface, the consequence is the destruction of identity security.
Democracy would also be eroded where we are deprived of a secret credential to feed volitionally. When your identity is established without your knowledge, you live in a 1984-like dystopia.
You could refer to “How to not see our weak digital identity further weakened” https://www.linkedin.com/pulse/how-see-our-weak-digital-identity-further-weakened-hitoshi-kokumai/
Thanks Rich Young for inspiring me to write this message. https://www.linkedin.com/posts/jonathanhiroshi_securityawarenesstraining-egreftegvehiegj-activity-7036105357965836288-5dg1
