Sometimes I wonder if the real vector for fixing “X business was attacked; Y million personal identifiers were accessed” is to ratchet up on-opening and post-opening identity verification in the financial industry such that knowing 4 facts about someone isn’t worth $Xk++.
-
-
Your name, DOB, address, SSN, and everything else used in a widespread fashion to open up a credit card account is in 1000+ databases. That is highly unlikely to change.
Show this thread -
Card issuers (and other participants of the financial industry, but in the main, card issuers) benefit enormously from keeping the barriers to conversion very low. They’ve been going down as the number of compromised identities has been going up. This dynamic funds the hacks.
Show this thread -
Maybe we need to tell issuers “OK, you issued a credit card without authorization from the putative customer, and took a $600 fraud loss. You just forfeited the identity security bond; take the $10k hit this quarter.” (This would not be a consequence free policy!)
Show this thread
End of conversation
New conversation -
-
-
It's not clear those big tech companies solve the problem. They need to be perfect if there are to be no leaks. I think all they achieve is converting a common event to a rare event. Given time they will all leak.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.