Are security questions terrible for account security? | Proton
proton.me
Explore the pitfalls of security questions and discover stronger alternatives to safeguard your online privacy.

The answer is yes, and the TL;DR is not to use them, use 2FA, and not share personal details online (which is hopefully all obvious advice)

cross-posted from: https://lemmy.world/post/12060980

  • bionicjoey@lemmy.caEnglish
    4·
    5 months ago

    It depends on if the purpose of the questions is for 2FA or account recovery. If the latter, you haven’t really solved anything since if you lose one then you lose the other

    • smeg@feddit.ukOPEnglish
      11·
      5 months ago

      My personal view is that the extra security that these so-called security questions bring is worth less than the risks they bring. I’d rather the (low) risk of Bitwarden being compromised and losing the account than the (high) risk of someone searching or discovering information about me I can’t change and losing the account.