10
After a close call, I'm overhauling how I handle security questions
I recently attempted a password reset on my bank's website and was alarmed by the security questions. They relied on personal information that's often easily found online, like birthplace or favorite teacher. I managed to guess the answers for a test account using basic social media snooping, which was terrifyingly simple. This flaw makes accounts vulnerable to social engineering attacks. My tip: use false answers that only you know and store them securely.
3 comments
Log in to join the discussion
Log In3 Comments
violaj721mo ago
That's why I rely on encrypted storage for all my security answers.
2
robinson.hannah1mo ago
Encrypted storage for security answers introduces a new vulnerability if the encryption is breached. Relying solely on digital tools ignores the human element of memory and intuition. What happens when you can't access that encrypted file during a critical moment? Memorizing complex answers or using passphrases spreads the risk across multiple methods. Systems can CRASH or get corrupted, leaving you without backup. A layered approach to security is far more ROBUST than putting all trust in one solution.
5
sandraperez1mo ago
What if your encrypted file just vanishes one day? I mean, idk, maybe it's just me but that sounds like trading one headache for another.
3