authentication - Is Plaid, a service which collects user’s banking . . . Plaid has raised billions in funding! I would think with Plaid using bank logos to make their “fake” bank login forms look legitimate, banks would be after Plaid with lawsuits But apparently some of them are investors! On Plaid’s website Citi, American Express, and others are listed as investors
I linked an account with Plaid. If I change my username and password . . . “ Can Plaid still access my account without even after I change my username and password?” Well Plaid's access to your account is dependent on the token, not your username and password If you change your username and password, the token becomes invalid, and Plaid should no longer have access to your account There are scenarios where Plaid can still have access, but in general, no
Is Plaid safe if I change the password after deposit? Let's say you trade on Coinbase Every time you need to deposit money via Plaid, you: change the password to your online bank account pair your bank with Coinbase deposit money unpair your bank (I'm not sure if necessary) change back the password Would you consider this approach 100% safe?
What information is shared by an audio bluetooth connection? See: car companies using your location data to sell your driving habits to insurance companies, or Plaid selling people's entire financial transaction history (They may not even want the call history itself, but it contains my contacts, which many companies do desperately want )
Are there joint password accounts? (Like bank accounts) Joint bank accounts don't work that way Each user have their own password and user id and even debit credit card linked to the account if they exist Depending on the type of account you may have "disjunctive" accounts, were each user can do everything, and "conjunctive" were each operation requires approval by all owners So, do you mean a "conjunctive" online account for some service?
windows - Reconstructing bittorrent data from PCAP - Information . . . I am doing a CTF flag for my school project with a PCAP flag based on this CTF write-up: eindbazen net - Plaid CTF 2012 - Torrent I setup a local torrent file containing an mp3 (the audio is my flag's key) that is shared between two laptops
passwords - How is it secure for Venmo to ask for credentials . . . Is this feature limited to a few selected banks? If so, I can imagine that Venmo may have passed a special agreement with them and may use your login and password only to obtain a ticket, and that only this tickets gets stored in the database, not your bank credentials (but this is just guessing, in any way they should never have to ask you for your bank password, this should have been
What is the logic of using numbers for Windows PIN? @security_paranoid A mere 2 digit alphanumeric sequence (ignoring case) has more than a tenth of that (1296), 3 has 46656 Using alphanumeric sequences does not stop you using a number only sequence if that is faster The same applies to PIN pads, and I would suggest they are rarer on Windows installs than most other OS's (for login to say android that would be a good argument)