Use code BlackBelt at the link below to get an exclusive 60% off an annual Incogni plan: incogni.com/blackbelt It’s risk-free with Nord’s 30-day money-back guarantee!
I haven't watched the video but a look at the description tells me that you're going to use a recent security breach as a means to flog incogni and Nord. I pay my monthly UA-cam Premium fee in order to avoid ads; if you're going to constantly flog snake-oil such as Nord it's time to say goodbye. Unsubbed and blocked.
Or you can use Bitwarden their vault which is exactly the same and its completely free lol, just Nords had a data leak in and of itself that's all and Bitwarden's got some tremendously good reviews as well.
How many clogs have you collected? You’re going to need thousands of them. Or perhaps you are a descendant of Ned Ludd? This puerile, petulant, longing for the “good old days” before is pathetic. The good old days were not any better than now. There were equal numbers of bad people doing bad things to unsuspecting people - they were just different. Things are moving a little faster, but if I can keep up with it all and enjoy the wonderful convenience of the modern world while understanding the concomitant complexities, at 70, so can bloody you 🤬
The only reason for paperless is for the Companies to Save money in their own coffers same for removing cash but at the same time having more power over people by invading your Privacy fir data along with the ability to freeze your assets if they so wish, 🤬
Until there are very real consequences for mishandling personal data like this, such as prison and automatic compensation for every single person affected regardless of whether their data is used in fraud or identity theft, this will keep happening. Imagine if the company responsible had to pay even £100 to very single name on that list? And if it bankrupts them so be it, it would send a warning to these people who profit from selling access to our personal information to invest in real security and hire compotent staff.
you do realise they used to hack typerwriters...they used to retrieve the ribbon and work out the characters from the imprint left...it was a common spying technique
@@zurielsss Who are? NATO? I know, we can see all their modern "useless battle tanks" smouldering, and all scattered all over the Ukrainian battlefield, as they're receiving the largest, most significant, hammering any nation has ever received throughout history. Yet read yourself? Deeply indoctrinated with the hilariously juvenile western propaganda! Have you learning difficulties, maybe? Or are you actually as thick as you read?
Banks and other companies love to put the onus on us - "You are the victim of fraud, you have been defrauded, your identity has been stolen and you have been defrauded". The reality of the situation is that it is the bank who has been defrauded, the company who has been defrauded, not "you" - they are the ones who granted access to the account, who believed the person was who they say they are when they're not. It is time that these banks took responsibility for them being defrauded and stop trying to put the onus onto the innocent consumer.
Can't these companies that get hacked or leave access get sued? It's their responsibility so they should take the blunt of everything. The hole business of "digital" is crooked.
They can and do, the ICO are the people that fine them. If I left a DB open like they did I would be sacked pretty sharp, beggars belief so called tech companies or big companies using tech can overlook stuff like this.
@@uneekpcs The money in that sense is the ICO's, there's nothing stopping you from taking the company that caused the breach through the courts to get compensation, but that'd have nothing much at least to do with the ICO I believe.
@@jeremysmith54565 yeh that's how I understand it, imagine it being a long arduous process as an individual trying to Sue one of these big companies for not keeping your data safe.
I'm a cloud software engineer, the funniest or maybe most tragic thing about this stuff, is that no one can truly keep your data safe in the cloud. Not google, not facebook, not microsoft, and not the government. Whilst ever they store your data, you are at risk. We need to advocate for the eradication of the storing of data at the central level, and instead find ways to store data at the individual level. But these institutions will never yield that power until something catastrophic happens.
I received a text from the 'England and Wales High Court' yesterday saying that I had failed to pay a fine for a motoring offense. They would prepare a lawsuit against me if I failed to pay the fine. I haven't owned a vehicle since 2002! I checked and it's a new scam.
A warrant for arrest would be after letters, visits by a collection agency or court bailiff if the payments were subject to a court order. There would be plenty of warning before this could happen.
They could have been phishing attempts, even if the data on the invoice (name, address, even the last 4 digits of a card number) were accurate, to get you to click a link to go to a fake site. Also, never click a link on a email, direct to the site manually, put the website url in manually etc, same for bank calls, if a bank calls you, hang up and ring them back with the correct number off their site.
I stopped using cloud storage ages ago. Now I've got my own server and I can back up to it larger files than I could using an online cloud based company. Remember, it's not The Cloud, it's someone else's server.
I was in a store a few years ago buying my son a jumper. The cashier wanted me to scan a QR code. I said no. Why should I? She rung up my purchase, I paid, and I haven't been back there since.
True, but it will help against future breaches, the sooner you start the better. Im not just shilling for ingcogni specifically, there are a few services out there, or you can just go to each side manually and delete stuff.
@@everythingquads Unfortunately Quads you are correct but at least this time he didn't falsely claim it was half the population of the planet that had their data stolen in order to earn commission on a service that cannot stop bad actors. He is however being very misleading by adding a UK flag to the thumbnail when it was only Americans who were affected this time. You would think that with the income he is making from UA-cam AdSense he wouldn't need to resort to being deceitful to earn a decent additional income, but greed is more important than integrity apparently 🤔
Nhs database been hacked at least twice in last few years, if you didn't opt out of having your medical records added to their data base then yes your private and sensitive medical information has likely been sold shared and accessed, there is a lot of profit to be made from our data
The best security and it stops 99%of the spam ariving is; DO NOT do Internet banking, never click the box so that companies store your bank details for future use. And of course the standard security you should have been doing for years, always use a different name on each platform and different passwords. Do not get the computer to remember the passwords ether.
I long for the earlier days of the internet, where they didn't store your info and you had to enter it every time you bought something. There are still a few sites and services around that give you the option _not_ to store your info, but they're as rare as rocking horse poop.
Too much stuff requires you to have an online accommodation for no good reason. The one that gets me is home automation. They all seem to need some form of cloud connection and authentication. What on earty happened to the obvious 'purchase a light bulb and connect to it locally' ? There is no need at all for comminications to trombone out and back to your home.
Probably so that they can evantually sunset it and require you buy another one. I Will NEVER buy a home automation device that requires an internet connect. To many time has a company been sold or gone bust and now whoopsies, you cant use your device.
Someone stole my identity with just my name and a birthdate close to my actual one. Racked up a huge debt with an online company. Was stupidly difficult to get my bame clear. The complaint is with the company
As soon as any information reaches the digital world it can be hacked. I don't care how strong your passwords, firewalls etc are, some clever person will find a way of obtaining access to it. "Password managers" make me cringe, what a good idea to allow one piece of software to hold all of your passwords. All you can do is adopt a belt and braces approach and hope you are not their next victim.
I have one password manager that has yet to fail me. My brain. You know that section that used to store all the telephone numbers back in the day of landlines? It's now being used to store passwords 😂
@@Ashtarot77 A good point, the problem with todays younger generations is that they allow the world technology to completely control their lives, and at some point it will bite them.
Anyone who has worked with computers know that putting stuff online is just as risky, but probably more, than having it only physically exist. This is why i hate when people say "I have nothing to hide, i dont mind putting my data on the internet" or along those lines. Would you like it if anyone was allowed to just enter your home and look through your stuff?
Surely using these store cards is also watching ones movement and these details can be accessed by others? All very dangerous at the moment as scammers can obtain such huge amounts of money or details to use somewhere.
Never use them. Without the possibilities of data issues they are still a scam. Just look at Tesco clubcard prices. Normal price with a clubcard, terribly inflated without one. Saw a Henry vacuum cleaner club card price £100. Same as most others. Non clubcard price £150!
I received an identity threat alert from my bank that my information was found to be on the dark web. When I tracked activity it led back to the confirmation of my voter registration. I’ve tried via the bank’s process and the city clerks office but I get nowhere. At one point I was led to one of the credit reporting companies for help but that did nothing either. I’m so frustrated
You should sue the govt. They've leaked somewhere. Like Post office scandal was found to be making money and ruining lives, maybe they were paid to pass on info?
I think the US does hold other countries citizens tax data for some form, Form W-8BEN. I dont think this was that, but it couldve been if those forms were leaked.
Yes it was only Americans affected, Ignore the UK flag he put on the thumbnail, he's just trying to con you into thinking it was UK also to earn commission from a service that can't protect you from criminals anyway. Sad to say but true.
What about utility companies with overseas call centres that insist that you answer all the security questions before they'll talk to you. This means that they know all your details and the answer to all your security questions and can use these faudulently or sell them on for fraudulent use by others? Companies' computer systems should only ask for random letters/characters from your details. And then there are those who call you in response to your email and want to 'take you through security' before talking to you. Surely it is they who should provide evidence that they are who they say they are.
Never give the information to a caller. Call back the organisation using the phone number you would normally use to confirm if the call was legitimate. Legit callers will agree and be happy for you to do so. A scammer will tell you 150 reasons why you shouldn't bother.
In the last couple of weeks I've had about 200 spam emails that says it from myself, cloned by the looks of it. Everyone I block is get a new one sent.
I was never totally sure about trusting these sites but I do trust your due diligence as have been subscribed for a while. Signed up, thanks for your time and glad you could get some benefit yourself. I would like to know if you have any thoughts on the push back on the DEI agenda specifically to do with movies and games.
[Now we know that they can detonate our phones at will... Remember your your Bluetooth watch and headphones let the phone know how close you are to the phone, and when the signal is strongest, meaning you are pretty much holding it 💥]
The only way you can stay safe in the internet is to block the camera on all your devices, disable Siri, (if u can) and enter absolutely 0 personal information on the internet. Keep safe!
My question is, this is so commonplace now, why is it not a requirement in law, to encrypt ANY data held on a person, and make it military strong, 204 AES or something along those lines.. Doesn't matter if its just your name. So if they do suffer a data breach then your information is secure. As for unencrypted databases then it should be a mandatary fine of £10 million for small companies rising to £10 per person for the larger breaches. So if say for example in this instance the fine is 1 billion.
There are fines for data breaches. Can't remember exactly but it's a large sum of money, or a percentage of annual turnover whichever is the larger amount. Edit... That is for any company subject to UK GDPR regs.
Maybe when I ask them wehere they got my information I should talk in a posh voice and say I'm a Barrister. They never tell me where they got it. "Where you get my numba fam!?" doesn't carry the same authority I guess.
Just a small thing, you seem to be mixing up encryption and hashing, not that it changes your point, not being rude by the way,love your videos and you are a legal expert where as I do cyber security, encryption is worse because if the attackers can get the key they can decrypt all passwords. Hashing is one way and I think is what you meant to say as you talked about brute forcing and the diagram you flashed up is hashing, salt make them more secure because they cannot be breached by rainbow tables. Oh and also in MFA, Apple has a very user friendly TOTP in ios18 and has had the security checkup tool for passwords stored in keychain (now called passwords in ios18). Best thing is unique password per service, randomly generated then you should not need to worry about changing them unless known to be breached.
This is very helpful. Are you saying that Apple password manager is good? I have been overwhelmed by how to manage all this stuff. Currently have mostly all different passwords saved in a privacy browser
If you're worried about your MFA data on an MS, Google or Apple authenticator app, there is an open source one call Aegis which is excellent. Having unique passwords per service is a good idea, but difficult to remember all your passwords. Look at a password manager like Bitwarden (free), that also has a password generator and can also store other comminly used data securely.
YT seems to have eaten my original reply: If you don't trust the big tech firms, a good open source TOTP program fro two factor is Aegis. I'd also recommend bitwarden for password management, it's free and has an excellent security track record.
@@oldplucker1 One trick ive heard of is a passphrase, a string of words that make the password longer but not complicated to remeber, look up xkcd 936. still susceptible to dictionary attacks though so maybe use some special characters an numbers aswell.
A serious question... How would we go about finding out if we were one of the 106 million people involved in this. Is it the job of the company to let all those potentially involved in the data breach ? If not, how would we find out before all the data fraud strikes us ? Seriously worried now 😮 😢
With the need to FLASH THE CARD now for everything and anything - we have set up an account with a smaller amount than our normal bank balances, thus limiting the potential of loss. A good PREPAID SYSTEM, ie £25, - £100, then top up when used wouldn't go a miss FOR BANKS TO CONSIDER. Parking meters are a pain!
I refuse to go anywhere or do anything that requires me to flash the card - unless it's on my terms, ie I am happy to though that scenario is a rare bird indeed.
A simple solution to this would be any entity authorizing a transaction should hold indemnity insurance and be fully liable to the cosequnce and cost of issuing illegitamate authorization. ie if the bank issues a loan to someone else in your name it's the bank thats liable 1, for the money and 2, for the inconvienience and cost caused to you.
Please be aware that using a VPN on your pc/laptop will not fully protect you. If you are using a smartphone alongside the PC, it can introduce cross-device side-channel vulnerabilities. If both your PC and smartphone are on the same Wi-Fi network, an attacker could monitor traffic patterns or even exploit the less secure smartphone traffic to infer details about your PC usage. Also side-channel attacks can exploit Bluetooth emissions from your smartphone or even nearby devices, creating a scenario where one device inadvertently "leaks" information about the other. Always turn your phone off when wanting browsing security.
Back in the early days you could just log in. Then you had to have a password, then a 'strong' multi symbol password that only your computer / phone etc could remember and now it's two factor identification. My university brought in two factor log in back in the spring so I need both a laptop and a phone to access anything, and, speaking personally, what a complete pain it is. Of course they, and a lot of other businesses using 2F, tell me it's the only way to stay ahead of fraudsters and hackers but it would seem from BBB's report that they may have welded the front door shut but they've left the back door open. Twenty factor ID isn't going to be much use if the databases checking it are not similarly protected - which of course they won't be because staff have to access them.
We're moving towards a time when all personal details are effectively open source. Need to think about a technical layer above this, so that it doesn't matter.
This might be why I am getting phone calls about how to help me get back money from a recent car loan I had. I haven’t had a car loan….. fishing….or was it AI woman’s voice to reassure me leaving me a message…. Worrying
How could it be proved that a company asked to remove personal data by incognito but hadn’t done it was responsible for any loss? Other companies have acquired our data, inc many abroad and not covered or indifferent to UK, EU, US laws.
All these things were meant to be safer than any other form of security, these days everything feels far more vulnerable and with far worse consequences when it goes wrong
The only way to be fraud-resistant is to max out your cards and exhaust your overdraft. Then if you do get hacked, they can pay some into your account out of pity instead of taking it out.
Having had various CRB / DBS / Security checks over the last 30 or so years I've been concerned that the checks have gone from being done by the Police to private companies that are the lowest bidders for the contract.
A brute force password attack could be detected by the server within a set number of failed attempts. Many systems implement rate-limiting measures or account lockouts to prevent brute force attacks. Common security practice.
I use a different email account on every signup. I use a different password for every account. I have many bank accounts spread across many functions. This at least means if enough of my data is leaked, it is contained to a small section. But it is damn annoying having to do it.
The data breach was of persons in the US, yet you withheld that information, I believe to promote your sponsor to a wider audience. Honestly, this feels like you're just using the U.S. data breach as an excuse to plug your sponsor. While the service might be helpful for people affected by the breach, most of your audience is in the UK, and this situation doesn’t really apply to them. Instead of offering relevant advice or content for your viewers, it comes across as pushing a service that only benefits a small portion of your audience. It just seems more like a promotional opportunity than genuine concern or helpful information. Incogni would be useless in this situation. The data would be sold via the dark web to scammers and fraudsters. What is Incogni going to do? Ask the bad actors to delete the data.
Incogni, as stated, works in the US. Lots of non-dark web businesses and organizations buy that data. I got a call for a survey from a province I do not live in. While Incogni may not exist in Canada, perhaps other similar services do. Furthermore, I can use this info to lobby my MP to get the law changed so that services such as this can operate.
He was careful not to claim it affected the UK this time, Instead he tried to con people by adding a UK flag in the thumbnail, he sold his integrity to Incogni some time ago I'm sorry to say.
Use code BlackBelt at the link below to get an exclusive 60% off an annual Incogni plan: incogni.com/blackbelt
It’s risk-free with Nord’s 30-day money-back guarantee!
Got this the other day, thanks.
I haven't watched the video but a look at the description tells me that you're going to use a recent security breach as a means to flog incogni and Nord. I pay my monthly UA-cam Premium fee in order to avoid ads; if you're going to constantly flog snake-oil such as Nord it's time to say goodbye. Unsubbed and blocked.
Or you can use Bitwarden their vault which is exactly the same and its completely free lol, just Nords had a data leak in and of itself that's all and Bitwarden's got some tremendously good reviews as well.
The Pentagon does not have the internet, as stated by a colonel himself. What does that say about the internet?
@@crogenyI dont think hes going to be heartbroken at someone who has commented a massive 3 times in total unsubscribing ..... do you ?
I'm sick of this password for this and password for that: paperless, cashless BS society.
I understand, but are you pro or anti the paperless/cashless aspect ? It's difficult to tell.
It's going to get worse😊
I still get paper and I still use cash I do not consent or comply
How many clogs have you collected? You’re going to need thousands of them. Or perhaps you are a descendant of Ned Ludd? This puerile, petulant, longing for the “good old days” before is pathetic. The good old days were not any better than now. There were equal numbers of bad people doing bad things to unsuspecting people - they were just different. Things are moving a little faster, but if I can keep up with it all and enjoy the wonderful convenience of the modern world while understanding the concomitant complexities, at 70, so can bloody you 🤬
The only reason for paperless is for the Companies to Save money in their own coffers same for removing cash but at the same time having more power over people by invading your Privacy fir data along with the ability to freeze your assets if they so wish, 🤬
I had my identity stolen... the thieves thought I was so shit, they returned it and offered me several new ones to give me leg up in life 😅
😂😂😂
😂😂😂😂 same here
😂😂😂
I kept getting transferred to a translator when I dealt with it. I think I'd notice if I had 4 children. Imo
Your in a good place mate .. nowt wrong with you 👍👍✌️✌️🇬🇧🇬🇧
Tony Blair said a digital ID would be safe and effective (said with a straight face).
What you’re telling me Tony Blair told porkies, I’m losing faith in MP,s I thought they were all honest people, NOT 🤭
I heard that Tony Blair told the truth one time, but that turned out to be a lie.
Greedy Blair just wanted to make money out of it !
IMO having a Digital ID is like handing over the keys of your car to a blind joyrider who has had lots of alcohol whilst taking hard drugs….
"Safe and effective"...hmm, now where have I heard that before? 🤔
*My advice is, have a very poor credit rating, then you've got nothing to worry about*
Until there are very real consequences for mishandling personal data like this, such as prison and automatic compensation for every single person affected regardless of whether their data is used in fraud or identity theft, this will keep happening. Imagine if the company responsible had to pay even £100 to very single name on that list? And if it bankrupts them so be it, it would send a warning to these people who profit from selling access to our personal information to invest in real security and hire compotent staff.
"Put everything online it's quite safe" they said. Which is probaly why the Kremlin went back to using typewriters, typewriters can't be hacked.
Carbon paper is a secret best kept secret
So that's why they are fighting with WW2 tanks 😂
you do realise they used to hack typerwriters...they used to retrieve the ribbon and work out the characters from the imprint left...it was a common spying technique
@@zurielsss Who are? NATO? I know, we can see all their modern "useless battle tanks" smouldering, and all scattered all over the Ukrainian battlefield, as they're receiving the largest, most significant, hammering any nation has ever received throughout history.
Yet read yourself? Deeply indoctrinated with the hilariously juvenile western propaganda! Have you learning difficulties, maybe? Or are you actually as thick as you read?
@@zurielsss And liking your own comment? That really is an American trait, so, just how embarrassing is that? Hilarious, idiots, idiots, everywhere!.
Banks and other companies love to put the onus on us - "You are the victim of fraud, you have been defrauded, your identity has been stolen and you have been defrauded". The reality of the situation is that it is the bank who has been defrauded, the company who has been defrauded, not "you" - they are the ones who granted access to the account, who believed the person was who they say they are when they're not. It is time that these banks took responsibility for them being defrauded and stop trying to put the onus onto the innocent consumer.
Can't these companies that get hacked or leave access get sued?
It's their responsibility so they should take the blunt of everything.
The hole business of "digital" is crooked.
They can and do, the ICO are the people that fine them. If I left a DB open like they did I would be sacked pretty sharp, beggars belief so called tech companies or big companies using tech can overlook stuff like this.
Under GDPR thats sort of how its meant to work, though could be some caveats to that or whichever.
@@uneekpcs The money in that sense is the ICO's, there's nothing stopping you from taking the company that caused the breach through the courts to get compensation, but that'd have nothing much at least to do with the ICO I believe.
@@jeremysmith54565 yeh that's how I understand it, imagine it being a long arduous process as an individual trying to Sue one of these big companies for not keeping your data safe.
@@uneekpcs outsourced labour is probably why
They keep trying to push us further into putting everything online while showing us why this is a terrible idea.
I'm a cloud software engineer, the funniest or maybe most tragic thing about this stuff, is that no one can truly keep your data safe in the cloud. Not google, not facebook, not microsoft, and not the government.
Whilst ever they store your data, you are at risk. We need to advocate for the eradication of the storing of data at the central level, and instead find ways to store data at the individual level. But these institutions will never yield that power until something catastrophic happens.
@@andydawson5341a big if
As an information security professional, I endorse this post. 👍😄
The entire Census data is stored on Google
@@chargeriderepeat7024 all it takes is a technical slip up on googles end from one of their many senior employees and that data is on the dark web.
Exactly why I do not fully set up my phone or computer. I do not want my info in any cloud. I will keep it myself.
Do they let you know if you're one of them or do you only find out when it's too late.
well I use cash if they don't take it I go somewhere else..I don't keep anything of value online
And they want us all to go online for banking and everything in our lives? Nah better to keep your most important details in physical form only.
I received a text from the 'England and Wales High Court' yesterday saying that I had failed to pay a fine for a motoring offense. They would prepare a lawsuit against me if I failed to pay the fine. I haven't owned a vehicle since 2002! I checked and it's a new scam.
British courts don't prepare a lawsuit against a person for non payment of fines . They send Plod around to your house to arrest you .
A warrant for arrest would be after letters, visits by a collection agency or court bailiff if the payments were subject to a court order.
There would be plenty of warning before this could happen.
You would get a letter in the post from any government agency. They don't send emails or text messages.
I've had two invoices from companies for services I don't use, payment has been stopped, and passwords changed. All last week.
They could have been phishing attempts, even if the data on the invoice (name, address, even the last 4 digits of a card number) were accurate, to get you to click a link to go to a fake site.
Also, never click a link on a email, direct to the site manually, put the website url in manually etc, same for bank calls, if a bank calls you, hang up and ring them back with the correct number off their site.
I stopped using cloud storage ages ago. Now I've got my own server and I can back up to it larger files than I could using an online cloud based company. Remember, it's not The Cloud, it's someone else's server.
That's insane!!! They should be sued for not protecting people's data. How do we know if we've been affected?
Thanks Daniel, don't understand the couple of negative comments. You're trying to help people.
Thanks. They should speak to some clients of mine...
Too many retailers these days asking for email addresses etc. I always remember them wrongly.
Yep - Don't give 'em more info than you know they actually need
You can say no.
I was in a store a few years ago buying my son a jumper. The cashier wanted me to scan a QR code. I said no. Why should I? She rung up my purchase, I paid, and I haven't been back there since.
If the data has been leaked, there is naff all Incogni can do about it. They can't remove info stored illegally.
Just a shameless plug for his sponsor, his content is getting worse, its more to make him money, and less to help us understand law.
@@everythingquadsgrow up, do you need a tissue 😢
True, but it will help against future breaches, the sooner you start the better. Im not just shilling for ingcogni specifically, there are a few services out there, or you can just go to each side manually and delete stuff.
@@halosrusty keep the tissue for yourself 😂
@@everythingquads Unfortunately Quads you are correct but at least this time he didn't falsely claim it was half the population of the planet that had their data stolen in order to earn commission on a service that cannot stop bad actors. He is however being very misleading by adding a UK flag to the thumbnail when it was only Americans who were affected this time. You would think that with the income he is making from UA-cam AdSense he wouldn't need to resort to being deceitful to earn a decent additional income, but greed is more important than integrity apparently 🤔
I can't hear the word "Fraud" without hearing it how Lionel Hutz from The Simpson's says it.... *pause* "FROWD"
NHS sold mine as they were the only people to have it when I was in hospital never got scam call on mobile till they had my number
Nhs database been hacked at least twice in last few years, if you didn't opt out of having your medical records added to their data base then yes your private and sensitive medical information has likely been sold shared and accessed, there is a lot of profit to be made from our data
@@paula622yes, indeed - I opted out of everything ages ago and keep opting out just to make sure I have opted out! If that makes sense.
I keep getting phone calls If I dont recognise it I dont answer, and O2 flashes up as SPAM
This is a bloody nightmare
The best security and it stops 99%of the spam ariving is; DO NOT do Internet banking, never click the box so that companies store your bank details for future use.
And of course the standard security you should have been doing for years, always use a different name on each platform and different passwords.
Do not get the computer to remember the passwords ether.
I long for the earlier days of the internet, where they didn't store your info and you had to enter it every time you bought something.
There are still a few sites and services around that give you the option _not_ to store your info, but they're as rare as rocking horse poop.
Too much stuff requires you to have an online accommodation for no good reason.
The one that gets me is home automation. They all seem to need some form of cloud connection and authentication. What on earty happened to the obvious 'purchase a light bulb and connect to it locally' ? There is no need at all for comminications to trombone out and back to your home.
Probably so that they can evantually sunset it and require you buy another one. I Will NEVER buy a home automation device that requires an internet connect. To many time has a company been sold or gone bust and now whoopsies, you cant use your device.
I have never stored anything in the so called cloud, it is just another server that can be hacked.
Someone stole my identity with just my name and a birthdate close to my actual one. Racked up a huge debt with an online company. Was stupidly difficult to get my bame clear. The complaint is with the company
As soon as any information reaches the digital world it can be hacked.
I don't care how strong your passwords, firewalls etc are, some clever person
will find a way of obtaining access to it.
"Password managers" make me cringe, what a good idea to allow one piece
of software to hold all of your passwords.
All you can do is adopt a belt and braces approach and hope you are not their
next victim.
I have one password manager that has yet to fail me. My brain. You know that section that used to store all the telephone numbers back in the day of landlines? It's now being used to store passwords 😂
@@Ashtarot77 A good point, the problem with todays younger generations is that they allow the world technology
to completely control their lives, and at some point it will bite them.
impossible to believe it was an accident, that procedures allowed it to be held that way. inside job 100% as far as im concerned.
Anyone who has worked with computers know that putting stuff online is just as risky, but probably more, than having it only physically exist. This is why i hate when people say "I have nothing to hide, i dont mind putting my data on the internet" or along those lines. Would you like it if anyone was allowed to just enter your home and look through your stuff?
Thank you for highlighting this.
Surely using these store cards is also watching ones movement and these details can be accessed by others? All very dangerous at the moment as scammers can obtain such huge amounts of money or details to use somewhere.
Seen this on a number of crime channels to log the whereabouts/purchases of wrong 'uns. Sheep like to use them to get Aldi prices from Tesco etc.
Never use them. Without the possibilities of data issues they are still a scam. Just look at Tesco clubcard prices. Normal price with a clubcard, terribly inflated without one.
Saw a Henry vacuum cleaner club card price £100. Same as most others. Non clubcard price £150!
I received an identity threat alert from my bank that my information was found to be on the dark web. When I tracked activity it led back to the confirmation of my voter registration. I’ve tried via the bank’s process and the city clerks office but I get nowhere.
At one point I was led to one of the credit reporting companies for help but that did nothing either. I’m so frustrated
You should sue the govt. They've leaked somewhere.
Like Post office scandal was found to be making money and ruining lives, maybe they were paid to pass on info?
If man made it, man can break it. This is why digital id is so dangerous. One hack, and you are in deep trouble.
Wasn't this just an American data breach?? I've seen no mention of this involving any UK data, bbb can you confirm if this affects us uk citizens.
It was only american data yes.
I think the US does hold other countries citizens tax data for some form, Form W-8BEN. I dont think this was that, but it couldve been if those forms were leaked.
Yes it was only Americans affected, Ignore the UK flag he put on the thumbnail, he's just trying to con you into thinking it was UK also to earn commission from a service that can't protect you from criminals anyway. Sad to say but true.
generated passwords are good but can be frustrating if you cannot get into a site because it has hicupped and didn't recognise the password
What about utility companies with overseas call centres that insist that you answer all the security questions before they'll talk to you. This means that they know all your details and the answer to all your security questions and can use these faudulently or sell them on for fraudulent use by others? Companies' computer systems should only ask for random letters/characters from your details.
And then there are those who call you in response to your email and want to 'take you through security' before talking to you. Surely it is they who should provide evidence that they are who they say they are.
Never give the information to a caller. Call back the organisation using the phone number you would normally use to confirm if the call was legitimate. Legit callers will agree and be happy for you to do so. A scammer will tell you 150 reasons why you shouldn't bother.
In the last couple of weeks I've had about 200 spam emails that says it from myself, cloned by the looks of it. Everyone I block is get a new one sent.
Right click on the address, it'll show you the origin. Then BLOCK
I joined incogni through this channel and I am well pleased as incogni report the progress of getting all my information cleared from data banks.
I was never totally sure about trusting these sites but I do trust your due diligence as have been subscribed for a while. Signed up, thanks for your time and glad you could get some benefit yourself. I would like to know if you have any thoughts on the push back on the DEI agenda specifically to do with movies and games.
This looks likes like a hard sell
that crossed my mind too
@@Tux00 FUD is a great sales technique
If you want to disrupt some word using a password list, use a space, usually they are at the very end and will take hours upon hors
I'm uncomfortable with being pushed to use online to buy tickets, apply for jobs etc etc more and more as time goes on.
[Now we know that they can detonate our phones at will... Remember your your Bluetooth watch and headphones let the phone know how close you are to the phone, and when the signal is strongest, meaning you are pretty much holding it 💥]
The only way you can stay safe in the internet is to block the camera on all your devices, disable Siri, (if u can) and enter absolutely 0 personal information on the internet. Keep safe!
nope!
the only way is to STAY OFFLINE!
you mean live off grid
My question is, this is so commonplace now, why is it not a requirement in law, to encrypt ANY data held on a person, and make it military strong, 204 AES or something along those lines.. Doesn't matter if its just your name. So if they do suffer a data breach then your information is secure. As for unencrypted databases then it should be a mandatary fine of £10 million for small companies rising to £10 per person for the larger breaches. So if say for example in this instance the fine is 1 billion.
Encrypted data can be hacked, regardless of the strength.
All it needs is a vulnerability or misconfiguration and someone skilled to exploit them.
There are fines for data breaches. Can't remember exactly but it's a large sum of money, or a percentage of annual turnover whichever is the larger amount.
Edit... That is for any company subject to UK GDPR regs.
Lawyer choose the subject, emotionally, pushes you into buying sponsorship 😡😡😡
Funnily enought my identity protection insurance got discontinued shortly after this breach, which i had been paying for the last 20 years.
Maybe when I ask them wehere they got my information I should talk in a posh voice and say I'm a Barrister. They never tell me where they got it. "Where you get my numba fam!?" doesn't carry the same authority I guess.
Just a small thing, you seem to be mixing up encryption and hashing, not that it changes your point, not being rude by the way,love your videos and you are a legal expert where as I do cyber security, encryption is worse because if the attackers can get the key they can decrypt all passwords. Hashing is one way and I think is what you meant to say as you talked about brute forcing and the diagram you flashed up is hashing, salt make them more secure because they cannot be breached by rainbow tables.
Oh and also in MFA, Apple has a very user friendly TOTP in ios18 and has had the security checkup tool for passwords stored in keychain (now called passwords in ios18).
Best thing is unique password per service, randomly generated then you should not need to worry about changing them unless known to be breached.
This is very helpful. Are you saying that Apple password manager is good? I have been overwhelmed by how to manage all this stuff. Currently have mostly all different passwords saved in a privacy browser
If you're worried about your MFA data on an MS, Google or Apple authenticator app, there is an open source one call Aegis which is excellent.
Having unique passwords per service is a good idea, but difficult to remember all your passwords. Look at a password manager like Bitwarden (free), that also has a password generator and can also store other comminly used data securely.
Use a different password for each account. Make them strong, use tricks that make it very hard to guess.
YT seems to have eaten my original reply:
If you don't trust the big tech firms, a good open source TOTP program fro two factor is Aegis.
I'd also recommend bitwarden for password management, it's free and has an excellent security track record.
@@oldplucker1 One trick ive heard of is a passphrase, a string of words that make the password longer but not complicated to remeber, look up xkcd 936. still susceptible to dictionary attacks though so maybe use some special characters an numbers aswell.
As a web engineer, i can tell you things are only going to get worse, especially if governments push through with this digital ID agenda.
Thanks for the push! I’ve been meaning to review my passwords.👍
A serious question... How would we go about finding out if we were one of the 106 million people involved in this. Is it the job of the company to let all those potentially involved in the data breach ? If not, how would we find out before all the data fraud strikes us ? Seriously worried now 😮 😢
I have been not only assuted by police I am loosing the roof over my head because of fraud
With the need to FLASH THE CARD now for everything and anything - we have set up an account with a smaller amount than our normal bank balances, thus limiting the potential of loss. A good PREPAID SYSTEM, ie £25, - £100, then top up when used wouldn't go a miss FOR BANKS TO CONSIDER. Parking meters are a pain!
I refuse to go anywhere or do anything that requires me to flash the card - unless it's on my terms, ie I am happy to though that scenario is a rare bird indeed.
We are going to have to change our 'long and complicated' passwords, every day, at least!
A simple solution to this would be any entity authorizing a transaction should hold indemnity insurance and be fully liable to the cosequnce and cost of issuing illegitamate authorization. ie if the bank issues a loan to someone else in your name it's the bank thats liable 1, for the money and 2, for the inconvienience and cost caused to you.
Please be aware that using a VPN on your pc/laptop will not fully protect you. If you are using a smartphone alongside the PC, it can introduce cross-device side-channel vulnerabilities. If both your PC and smartphone are on the same Wi-Fi network, an attacker could monitor traffic patterns or even exploit the less secure smartphone traffic to infer details about your PC usage. Also side-channel attacks can exploit Bluetooth emissions from your smartphone or even nearby devices, creating a scenario where one device inadvertently "leaks" information about the other. Always turn your phone off when wanting browsing security.
Back in the early days you could just log in. Then you had to have a password, then a 'strong' multi symbol password that only your computer / phone etc could remember and now it's two factor identification. My university brought in two factor log in back in the spring so I need both a laptop and a phone to access anything, and, speaking personally, what a complete pain it is. Of course they, and a lot of other businesses using 2F, tell me it's the only way to stay ahead of fraudsters and hackers but it would seem from BBB's report that they may have welded the front door shut but they've left the back door open. Twenty factor ID isn't going to be much use if the databases checking it are not similarly protected - which of course they won't be because staff have to access them.
So is this just for americans? What about us in the uk?
We're moving towards a time when all personal details are effectively open source.
Need to think about a technical layer above this, so that it doesn't matter.
Nobody had permission to have any details about me. Not one bit
This might be why I am getting phone calls about how to help me get back money from a recent car loan I had. I haven’t had a car loan….. fishing….or was it AI woman’s voice to reassure me leaving me a message…. Worrying
never bank on line or even phone,,thats me
Same here, people laugh at me and call me a dinosaur. I'm happy being a dinosaur
Excellent advice and I am very happy with INCOGNI. !!!!!!
Thanks Daniel good advice for everyone to take note 😊
Thank you for the alert.
If something can be built it can be taken apart. Nothing is invincible.
Making sure your not being naughty
How could it be proved that a company asked to remove personal data by incognito but hadn’t done it was responsible for any loss? Other companies have acquired our data, inc many abroad and not covered or indifferent to UK, EU, US laws.
Just trash your credit score before the scumbags do!
So there maybe an irony to this, that they may Email you so you Know your data's out there, no surprises!🤔😏🤪
Strong password is a relative term. 8 characters used to be strong.
I'm being targeted but by the authorities the biggest type of criminal 🤨
Meh... We all go down together, seems befitting.
And this is getting worse by the day .
No one text,email or calls to ask our permission for disclose our information? Funny that
Question should be why wasn't it encrypted
I'm hopeless with computer stuff, so I'm probably screwed because of this type of crap security.
All these things were meant to be safer than any other form of security, these days everything feels far more vulnerable and with far worse consequences when it goes wrong
This is why you never fill in that electoral role!
So where is the accountability for the company that’s supposed to keep our data safe
no .i change passwords all the time
The only way to be fraud-resistant is to max out your cards and exhaust your overdraft. Then if you do get hacked, they can pay some into your account out of pity instead of taking it out.
Having had various CRB / DBS / Security checks over the last 30 or so years I've been concerned that the checks have gone from being done by the Police to private companies that are the lowest bidders for the contract.
Whatever you do, don't use an email address as a security back-up, forget you used it and delete that email account. That's what I did. D'oh!
Pointless…. I have three bank accounts
No company should ever use mc2 data again.
A brute force password attack could be detected by the server within a set number of failed attempts. Many systems implement rate-limiting measures or account lockouts to prevent brute force attacks. Common security practice.
Important and useful information as always, thank you.
The 2 girls from just stop oil were sentenced on the 27th so what happened to them?
24 months for one person.
20 months for the other.
Please accept cookies and agree all terms and conditions.
Also 192 is an electorial roll data so you just pay a few quid for credits and you can find out so much info about a person living at the address.
I use a different email account on every signup.
I use a different password for every account.
I have many bank accounts spread across many functions.
This at least means if enough of my data is leaked, it is contained to a small section.
But it is damn annoying having to do it.
Is the whole video the ad 😂
Yes TFL lost it all…
The data breach was of persons in the US, yet you withheld that information, I believe to promote your sponsor to a wider audience. Honestly, this feels like you're just using the U.S. data breach as an excuse to plug your sponsor. While the service might be helpful for people affected by the breach, most of your audience is in the UK, and this situation doesn’t really apply to them. Instead of offering relevant advice or content for your viewers, it comes across as pushing a service that only benefits a small portion of your audience. It just seems more like a promotional opportunity than genuine concern or helpful information. Incogni would be useless in this situation. The data would be sold via the dark web to scammers and fraudsters. What is Incogni going to do? Ask the bad actors to delete the data.
Incogni, as stated, works in the US. Lots of non-dark web businesses and organizations buy that data. I got a call for a survey from a province I do not live in. While Incogni may not exist in Canada, perhaps other similar services do. Furthermore, I can use this info to lobby my MP to get the law changed so that services such as this can operate.
He was careful not to claim it affected the UK this time, Instead he tried to con people by adding a UK flag in the thumbnail, he sold his integrity to Incogni some time ago I'm sorry to say.