• chickentendrils [any, comrade/them]
    ·
    9 months ago

    Who the fuck is putting cryptographic keys which can dispossess them of so much money on a phone to begin with?

    Let them bitch about a malicious app dev stealing it, at least they still have their thumbs.

    • someone [comrade/them, they/them]
      ·
      9 months ago

      Who the fuck is putting cryptographic keys which can dispossess them of so much money on a phone to begin with?

      The same sorts of people who are enthusiastically embracing Google's "Passkey" scam.

        • someone [comrade/them, they/them]
          ·
          9 months ago

          Because it's just a glorified password manager. But instead of your master password being kept securely in your head, your master password is now in the hands of Google or Apple or Microsoft.

          • blobjim [he/him]
            ·
            edit-2
            9 months ago

            KeePassXC just today released support for storing passkeys in your own keepass database file. And they're not just "glorified passwords". They're private keys that use challenge-response authentication so they're never actually sent over the network. Harder to compromise.

            Using passkeys with some kind of personal database is ultimately an objective improvement over hodge podge username and password mechanisms, so they're only going to continue being adopted further.

            The only case they don't really work for is when you want to log in to a computer that doesn't have access to your passkeys.

                  • blobjim [he/him]
                    ·
                    9 months ago

                    You don't actually use your brain lmao. How many online accounts do you have?

                      • blobjim [he/him]
                        ·
                        9 months ago

                        My password database has over 300 credentials. I think most people have more credentials for things (online accounts, also physical locks, device passwords, etc.) than they can remember.

                      • RyanGosling [none/use name]
                        ·
                        edit-2
                        9 months ago

                        I’m sure tens of millions of people said that before being breached and having their password “John1974Smith” leaked. Maybe don’t say anything if you don’t understand basic security protocols and technology.

                        The average person is not a special boy like you. You’re literally in a post showcasing what the average person is like with their information. Security is meant to protect against those people.