They should publish the names of the companies which datasets have been involved. NOW.
the name of the company is known. it’s IDMERIT: https://www.idmerit.com/
Yes, but the point is that they seem to have data for or on behalf of a load of different companies, probably in the telco department.
Other companies outsource their KYC compliance to them.
Exactly. And this is the list of company names we need.
I think about this kind of simplistically.
Firstly, answer to yourself is it practically possible to store and use vast amounts of data safely, without risk of being compromised?
If you say no, then we shouldn’t be doing this. If you said yes:
Since you think it is practically possible to do safely, the penalty for any company who fails to do this should be instant corporate death. Automatic nationalization and liquidation to compensate the victims. People who are found in court to be responsible should face severe consequences. Criminal negligence, multiple counts.
That’s the only way I see to get all of these data hoarding fucks to take it seriously.
/end pipe dream
Why the hell would you use an AI tool for giant data sets of sensible data? Someone needs to go to jail and that company shouldn‘t exist any longer.
“At this scale, downstream risks include account takeovers, targeted phishing, credit fraud, SIM swaps, and long-tail privacy harms. Industry-wide, the case underlines how third-party identity vendors have become critical infrastructure and can become single points of catastrophic failure,” our team explained."
Wouldn’t Username + Password + SIM = 2FA password reset?
It would for all the financial industry that refuses to move to a real 2 factor system.
Sounds more like big corporations are the problem here
