Dom, dom, dom.
Het "internet" is veel te onveilig. Je kunt namelijk veel te eenvoudig verleid worden om vertrouwelijke gegevens te delen met cybercriminelen die
zich voordoen als betrouwbaar geachte partijen (doorsnee mensen kunnen fake websites onmogelijk van echte onderscheiden), websites van "betrouwbare" partijen worden aan de lopende band gehacked en keer op keer blijkt de hardware in onze handen, die we voor dit doel hier noodzakelijkerwijs enorm zullen moeten kunnen vertrouwen,
onbetrouwbaar:
https://www.heise.de/news/TPM-2-0-Fehler-in-Spezifikation-ermoeglichen-Ausfuehrung-von-Schadcode-7531171.html.
Er
zijn zaken waarbij de risico's (in elk geval voor een aanzienlijk deel van de bevolking en/of de door hen bezitte apparaten) simpelweg te groot zijn om ze te online te willen kunnen doen.
Naast dat we ons daar veel te afhankelijk van maken. Dan kun je wel gaan dreigen (
https://security.nl/posting/787543) maar als je niet eens kunt voorkomen dat een paar jonge mannen de persoonsgegevens van zo'n beetje alle Nederlanders bij elkaar kunnen harken doordat ze bijna overal digitaal kunnen "binnenwandelen", moet je niet zo'n grote broek aantrekken en zeker niet met digitale persoonsbewijzen gaan strooien.
En hou op met die stomme digitale "wallets", anders krijgen we ook in NL dit soort absurde Amerikaanse toestanden, uit
https://www.dallasnews.com/news/politics/2023/02/27/thousands-of-asian-texans-targeted-in-drivers-license-breach/ (bron:
https://infosec.exchange/@metacurity/109938726039820682):
Thousands of Asian Texans targeted in driver’s license breach
A “Chinese organized crime group based in New York” was able to obtain thousands of licenses from the state due to lax security protocols, officials confirmed Monday.
By Lauren McGaughy and Allie Morris, 10:59 AM on Feb 27, 2023 CST — Updated at 6:49 PM on Feb 27, 2023 CST
Update: Updated at 6:45 p.m. with comments from a board member of DFW Chinese Alliance.
[...]
No state systems were hacked, officials said. Instead, the criminal actors were able to fraudulently obtain the licenses in a scheme [1] McCraw described this way: personal data about Texans of Asian descent was obtained on the dark web, including credit card and personal information, and then used to request replacement driver’s licenses from the state. The group specifically targeted Asians of various backgrounds with the hopes of finding “look-alikes” to match with Chinese nationals here in the country illegally, he said.
[...]
While DPS issues licenses, they are ordered through a portal operated by a separate agency, the Texas Department of Information Resources. At least four thousand fraudulent accounts were created and 2,400 licenses were shipped to “third-party addresses,” according to a letter from DPS notifying legislators of the problem.
[...]
DPS first learned about the problem at the end of last year, but has not yet notified affected Texans because they have been working on the criminal investigation and apprehending those responsible, McCraw said, some of whom he said have been arrested.
[...]
Hailong Jin, board member of the DFW Chinese Alliance, said he, along with many in the Chinese American community in North Texas learned about stolen data through news reports. He said the state should have notified potential victims earlier and stressed the importance of language-appropriate material for victims who are not English-proficient.
[...]
Jeoff Williams, DPS Deputy Director of Law Enforcement Services, told lawmakers the bad actors did not breach the state’s system, but rather exploited existing security vulnerabilities in the online portal.
Texans looking to log into the license system had to provide an audit number on their driver’s license or answer a series of questions about themselves, such as previous addresses or their mother’s maiden name. The bad actors were able to find those personal details on the dark web to gain access to Texans’ accounts, Williams said.
In order to pay for the replacement, the system only required a credit card number, but not the billing zip code or the three-digit code on the back on the card, known as a CVV, he added. Williams said the department asked the Department of Information Resources and the agency’s vendor to address those issues.
[...]
Uit [1] =
https://www.dallasnews.com/news/texas/2023/02/27/possible-victim-of-id-theft-scam-targeting-asian-texans-i-have-to-be-on-constant-alert/:
Possible victim of ID theft scam targeting Asian Texans: ‘I have to be on constant alert’
[...]
By Hojun Choi, 7:22 PM on Feb 27, 2023 CST
Allen resident Ping Du says he was in Mexico in late December when his family vacation was ruined by an alert from his bank that his personal information on record had been updated without his knowledge.
A bank representative told Du that someone had walked into a bank branch in New York and provided a physical driver’s license under his name. Fortunately, Du said, he was able to put a freeze on his bank account before the fraudster tried to withdraw money the following day.
But that wasn’t the last time that Du was put on notice about potential fraud related to his identity — a different bank notified him that credit cards were being sent out to an address he didn’t know, and a mobile phone service provider told him about a new account that he did not make.
[...]
Betrouwbaar absoluut (bewijzen dat jij de persoon bent op jouw identiteitsbewijs, mits terecht op jouw naam gezet) authenticeren
*KAN NIET ONLINE*.