Quote:
Originally Posted by ApK
My rant for the day is on myself:
I'm pretty savvy when it comes to technical security. I just tried a piece of shareware (well reviewed, but from a company/dev I have no other knowledge about) that interacts with a Google account. Without thinking, I entered one of my primary Google passwords into the App's GUI...not the standard Google "this app want's access" gui.
Ugg. People, do as I say, not as I do. Don't type your passwords into strange software!!
If the software needed to be used that way, and I really wanted it, I should have set up a new, separate account with a special password just for testing, then I could have monitored that new account and password for signs of abuse and fraud.
I have no evidence that anything bad will happen, but it was not worth the risk.
Now I need to change that password, which is annoyingly inconvenient.
|
Oh, gawd, I know that scenario oooh so well! I make my living writing about and managing computers and I work for a security company. I think I'm pretty savvy, and I am pretty good about understanding _real_ risk (as opposed to perceived risk). But I've been caught out in just the same way a couple of times, each one reminding me, yet again, how easy it is to be careless. And it is SUCH A PAIN to have to go change those core passwords.