Carol_
DIS Veteran
- Joined
- Aug 29, 2019
https://www.zdnet.com/article/thous...ounts-are-already-for-sale-on-hacking-forums/
I'm contemplating canceling my credit card...
I'm contemplating canceling my credit card...
That article does not suggest that the accounts were hacked directly from Disney+: more likely these accounts were compromised by malware or phishing directed at the customers. This sounds more like hijacking than actual hacking.https://www.zdnet.com/article/thous...ounts-are-already-for-sale-on-hacking-forums/
I'm contemplating canceling my credit card...
I don't think credit card info was hacked, it was the login information. Annoying and I really hope that doesn't happen to me, but not something to cancel a card over.
Apparently Disney hasn't read a cyber security book since 1992.https://www.disboards.com/threads/password-problem-and-disney.3779134/I am linking this thread here because it appears that people signing up for Disney+ & using a new password to do so found the system had automatically changed their old passwords for their other Disney accounts - which I suppose forces you to use the same password for all Disney accounts whether you want to or not, not a good idea IMO.
Apparently Disney hasn't read a cyber security book since 1992.
I keep track of my user names and passwords in a small, nondescript notebook that's similar to an old fashioned address book. I have it hidden in my home in a place that is easily accessible in an emergency but isn't a place where a thief would look for something valuable. I also don't autosave user names and passwords.
Apparently Disney hasn't read a cyber security book since 1992.
While I understand the reluctance, there's nothing inherently wrong with auto-saving usernames and passwords. In fact, using a good password manager along with 2-factor authentication like Skywise noted above is better than writing down passwords on an insecure device. And it encourages using stronger passwords - using autofill to enter a password like "a203-Z?$adkelSS2b.32" which would only be used on one site is much more secure than using "Mickey1" on disney.com and "Mickey2" on Hulu.
https://news.google.com/articles/CA...ocv1CjCSptoCMPrTpgU?hl=en-US&gl=US&ceid=US:enWell, it didn’t take Disney+ long to suffer IT issues did it. We all somewhat tolerate their abysmal IT, but to be competitive in the streaming world they need to get their act together & fast IMO, and pointing the finger elsewhere isn’t likely to go over well. Wonder if all of those new subscribers trying to contact them about being locked out of their accounts are being subjected to long waits on hold with never ending music sounding like it’s being broadcast underwater.
That's hardly fair. Google and Amazon are also one password for everything. A lack of 2FA is a legitimate complaint, but the kinds of people who are reusing passwords across multiple sites (I.E. the people in this story) aren't likely to want to mess around with 2FA anyway.
5.25" floppies?! You younguns and your micronization! 8" floppies are gud 'nuff for me!they haven’t read an IT book since 5.25” floppy disk were all the rage!
While I agree that those are better than many people’s practices, I’ve seen too many supposedly impervious services and websites become compromised.