These are the same companies that don’t support second factors, only have their app as a second factor, or only SMS second factor. Is it too much to ask for smart card or token (yubikey) support?

  • ares35@kbin.social
    link
    fedilink
    arrow-up
    7
    ·
    7 months ago

    we have one piece of remote software that requires 90-day resets, but half the time the process is bugged so we end up having to have a new password relayed to us in the clear… through email. third-party email. it’s only 100s of thousands of medical records on the other side of that login. no big.

    • l_b_i@yiffit.netOP
      link
      fedilink
      English
      arrow-up
      3
      ·
      7 months ago

      I don’t have any first hand experience, but anecdotes I hear, Medical and Banking have some of the worst password/security practices.