{"id":8436,"date":"2017-07-27T16:49:04","date_gmt":"2017-07-27T23:49:04","guid":{"rendered":"http:\/\/bone-in-the-throat.com\/Blog\/2017\/07\/27\/wow-thats-secure\/"},"modified":"2021-01-08T19:41:29","modified_gmt":"2021-01-09T03:41:29","slug":"wow-thats-secure","status":"publish","type":"post","link":"https:\/\/bone-in-the-throat.com\/Blog\/2017\/07\/27\/wow-thats-secure\/","title":{"rendered":"Wow That&#8217;s Secure!"},"content":{"rendered":"<p><a href=\"https:\/\/bone-in-the-throat.com\/Blog\/wp-content\/uploads\/2015\/06\/Cybersecurity.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignright size-full wp-image-6065\" title=\"\" src=\"https:\/\/bone-in-the-throat.com\/Blog\/wp-content\/uploads\/2015\/06\/Cybersecurity.png\" alt=\"\" width=\"300\" height=\"186\" \/><\/a>So secure that even I (the intended recipient can&rsquo;t get it&#8230;.<\/p>\n<p>My insurance company sent me a message saying that there were messages waiting on their site.<\/p>\n<p>There&#8217;s a link. It&#8217;s valid, and does in fact link to their web site.<\/p>\n<p>I click on the link, and it takes me to a page that asks me to create a password to view my messages. I create a password. Then I get five emails in my normal email, each of them contains a PDF that is encrypted. I figure out that the password I just created in fact will open these PDFS.&nbsp;<\/p>\n<p>I enter the password and find that each of the PDFs says the same thing. NOTHING.<\/p>\n<p>In the mean time, the password has reset ALL my passwords on for the insurance company and since I had their application running on my phone when the password reset happened. That counted as an invalid attempt to access the account. Then I try to acces the account from their web site to see if I can read the messages they wanted me to read&#8230; &nbsp;BOOM, now I&#8217;m locked out.&nbsp;<\/p>\n<p>I tried to reset my password again&#8230; NOPE! Too many accesses within too short a time&#8230;<\/p>\n<p><a href=\"https:\/\/bone-in-the-throat.com\/Blog\/wp-content\/uploads\/2016\/02\/Encrypt.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignright size-full wp-image-7801\" title=\"\" src=\"https:\/\/bone-in-the-throat.com\/Blog\/wp-content\/uploads\/2016\/02\/Encrypt.png\" alt=\"\" width=\"300\" height=\"200\" srcset=\"https:\/\/bone-in-the-throat.com\/Blog\/wp-content\/uploads\/2016\/02\/Encrypt.png 300w, https:\/\/bone-in-the-throat.com\/Blog\/wp-content\/uploads\/2016\/02\/Encrypt-150x100.png 150w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a>I still don&#8217;t have the messages that they wanted to send me.<\/p>\n<p>I call my agent. They don&#8217;t have any idea what the company is trying to reach me about. I ask my agent to tell the company I&#8217;m not going to use their web site anymore. I want every communication on paper, mailed to me with a stamp.&nbsp;<\/p>\n<p>I&#8217;ve spent over an hour trying to get this all so important message from the company and honestly&#8230; I&#8217;ve lost my desire to worry about it. They can wait for me to get the information on paper via USPS.&nbsp;<\/p>\n<p>Technology is <em>supposed<\/em> to make this kind of thing easier, <strong>not<\/strong> <em>harder<\/em>.<\/p>\n<p>The really annoying thing is that I have several encryption keys. The insurance company could have simply accessed one of the public keys, encrypted the message and sent it securely to my email where I could have <em>conveniently<\/em>&nbsp;read my message.&nbsp;<\/p>\n<p>All of this pissing around with their kludge &#8220;<em>security<\/em>&#8221; has done nothing but annoy the hell out of me. It&#8217;s screwed up the account for me and my other half and now I&#8217;ll have to spend yet more time (<em>probably hours<\/em>) unfucking this fuckup.<\/p>\n<p>Grrrrr!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>So secure that even I (the intended recipient can&rsquo;t get it&#8230;. My insurance company sent me a message saying that there were messages waiting on their site. There&#8217;s a link. It&#8217;s valid, and does in fact link to their web site. I click on the link, and it takes me to a page that asks &hellip; <\/p>\n<p class=\"link-more\"><a href=\"https:\/\/bone-in-the-throat.com\/Blog\/2017\/07\/27\/wow-thats-secure\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Wow That&#8217;s Secure!&#8221;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-8436","post","type-post","status-publish","format-standard","hentry","category-general"],"_links":{"self":[{"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/posts\/8436","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/comments?post=8436"}],"version-history":[{"count":1,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/posts\/8436\/revisions"}],"predecessor-version":[{"id":8437,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/posts\/8436\/revisions\/8437"}],"wp:attachment":[{"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/media?parent=8436"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/categories?post=8436"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/tags?post=8436"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}