Ancestors

Toot

Written by Kolokoko Bird! on 2024-10-15 at 20:12

Send the file, they say. The file contains personal details, so I turn it into a pdf and password protect it. I send the file, then phone to give them the password.

Oh, we can't accept your file, they say, we can only accept pdfs. Great, I tell them, it is a pdf. But it has a password, they say, and we aren't allowed to type in passwords. It is a security thing, and we take your security Very Seriously. You must send the file in an unprotected state. Because security. Because we take your privacy and security so seriously.

And this is a medical office. Shoot me.

[#]privacy #security #idiocy

=> More informations about this toot | More toots from KolokokoBird@chinwag.org

Descendants

Written by exlibrarykris on 2024-10-15 at 20:19

@KolokokoBird arrrrrrgh What a nightmare. Good luck.

=> More informations about this toot | More toots from exlibrarykris@cloudisland.nz

Written by Kolokoko Bird! on 2024-10-15 at 20:38

@exlibrarykris Thank you.

=> More informations about this toot | More toots from KolokokoBird@chinwag.org

Written by Norm on 2024-10-15 at 20:21

@KolokokoBird Even if they accepted it, wouldn't surprise me if they stored the PDF in a folder on their system with the password in a plaintext file right next to it...

=> More informations about this toot | More toots from normplum@fosstodon.org

Written by Kolokoko Bird! on 2024-10-15 at 20:41

@normplum That wouldn't surprise me, either.

And then when there is a huge data breach, the response is Ooops! Sorry. But we take your privacy and security very seriously.

=> More informations about this toot | More toots from KolokokoBird@chinwag.org

Written by Darren on 2024-10-15 at 20:53

@KolokokoBird You could send a password-protected link from an encrypted cloud service, like Mega, brax.me, or proton drive.

But yeah, i'm sure the real vulnerability is how they end up storing it. They frustrate me.

=> More informations about this toot | More toots from TerrorOfDemons@rcsocial.net

Written by Kolokoko Bird! on 2024-10-15 at 22:30

@TerrorOfDemons I like your idea, but that wouldn't work, either. They refuse to type in passwords, because they believe that doing so is a security problem. So no password-protected thing will work.

=> More informations about this toot | More toots from KolokokoBird@chinwag.org

Written by Eric Phelps on 2024-10-16 at 03:26

@KolokokoBird @TerrorOfDemons Do a "magic eye" PDF. Open PDF pages 11 and 17 side-by-side. Then tell them to hold a finger up, cross their eyes, and wait for the private details to appear. Want to see the next page? That'll be pages 7 and 4. But you have to flip page 4 by 180 degrees first.

No password needed. Or they can type in a f#$€¢ng password. Totally their choice. That's, ummm... "Malicious compliance". Yep, that's what it is.

=> More informations about this toot | More toots from ericphelps@mastodon.social