10 September 2009
As always, a company’s security is only as good as its weakest link. Often, social engineering is the easiest way in for someone who wants to steal passwords or account information. Password reset procedures are pretty bad, too (“What is the name of the street where you grew up”? Give me a break).
Here is a sad combination example. I doubt the companies discussed are outliers in terms of their security standards.
Read more about passwords