All the bullshit they do to get our personal information for commercial reasons under the pretext of keeping our accounts safe, and they let this stuff get stolen left and right.
Most places in the country they don’t have to tell you if your information was stolen either. Only california last I checked, so they usually tell everyone if they have to tell californians or else they would look worse. But without that law they wouldn’t tell us if they thought we wouldn’t find out.
I got a new email that doesn’t force me to link phone or other email and verify now. Fuck google, fuck aol, yahoo, and the rest. Big tech is past the growth phase and into maximizing revenue, only the growth companies treat you well, find one of them.
If you have a hardware security passkey like Yubikey as the only way to access the account and NO recovery phone or email, ONLY just backup codes secured locally, I feel like this wouldn’t be an issue anyways. I recently had someone try to use my old but still lightly active gmail to order Chipotle. I knew they couldn’t have access to my email though because only I have the Yubikey passkeys to get in.
Be honest, how many people own a hardware key, let alone use it properly. Meaning it be the only 2FA method on your account.
True, I keep one on me and show some of my fellow technical friends, yet they don’t use one either. I just wish I’d known about it sooner. I feel like I sleep better at night knowing everything is secured like that.
AI slop
This coverage was written and reviewed manually, based on verified reporting and primary security research rather than automated breach aggregation.
The sources don’t confirm the findings https://haveibeenpwned.com/PwnedWebsites
It’s not a new breach, just an aggregation of previous ones filtered for Gmail addresses.
