Then take some basic steps to discourage 2FA! AT&T knew it was an issue, so taking some basic measures like at least asking the likes of Twitter and Coinbase to stop doing it would be reasonable. Sounds like they didn't.
-
These wilderness guides are offering a wilderness guide service. AT&T is not offering an "identity" service. The guides at Yoesemite won't give you information about Chinese pandas, because that's well outside the scope of their service and they need know nothing about pandas.
Similarly, phone company people do not and need not know how phone numbers are being used as a security theater shortcut for real security in the dizzying variety of new technologies such as cryptocurrency. That's Coinbases' business, it is not at all theirs.
-
-
Again, I'm not expecting them to know about a "dizzying variety of technologies" I'm expecting them to know about a few major ones and respond appropriately when lots of people are getting hurt.
-
Yes you certainly are expecting, e.g., for them to know that cryptocurrency transactions are irreversible (when the traditional banking transactions they are familiar with are not) and then warn about such dangers. That is very much Coinbase's business and knowledge, not theirs.
-
No I'm not. I'm expecting them to notice that lots of people are getting hurt, via well publicized hacks, over and over again. I am *not* expecting them to anticipate new threats. That would require in-depth knowledge. (that's what we expect from engineering...)
-
If you put out a product, and someone unexpectedly uses it in a way that gets them harmed, I think you shouldn't have any liability if you do nothing *until* this is a common occurrence. Then I'd expect you to at least warn about this common danger.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.