[PLUG] Firefox security issue?

[Ben Koenig]

On 3/11/21 3:54 PM, Tomas Kuchta wrote:
> On Thu, Mar 11, 2021, 18:37 Rich Shepard <rshepard at appl-ecosys.com> wrote:
>
>> On Thu, 11 Mar 2021, Ben Koenig wrote:
>>
>>> The most vulnerable point in any system is the user. If you were told to
>>> use mozilla-firefox instead of firefox then the only flaw here is in the
>>> bureaucracy.
>> Ben,
>>
>> Their IT department leaves much to be desired.
>>
>>> Most likely explanation is that they are in a panic right now over the
>>> recent cybersecurity attacks and are overcompensating.The last couple
>>> years have been a complete shitshow for microsoft so I would not be
>>> surprised if people are making stupid decisions in a vain attempt to
>> cover
>>> their butt-holes.
>> Could well be. But suggesting we use mozilla-firefox rather than firefox
>> shows how little they know.
>>
>> .
>
> If they are this incompetent, I would be asking, is my/your banking
> safe/good-idea with them.
>
> That, I think, is the most important issue here.
>
> -T

TL;DR I'm not sure other banks are likely to be any different...


Lately I've been defaulting to incompetence as an explanation for this 
kind of thing. People don't like to hear it but given the repeated 
incidents among tech companies I feel like incompetence is much more 
widespread than we previously thought.


Banks aren't going to have the same kind of expertise as a company like 
Intel, MS, or Google which is kind of spooky when you remember that over 
the past 5 years we've had some really crazy exploits come out from all 
of those companies. And let's not forget the big data grab from equifax 
a few years ago.


At this point I think we need to start accepting that none of these 
companies are able to make meaningful promises in data security. And if 
a tech savvy company can't keep users safe, should we expect any better 
from non-tech savvy companies?

-Ben