My password for Adobe was stolen, but I used different passwords between that and the associated email, my hotmail, so I don't believe I have anything to worry about. They might be able to hack my forum accounts, since I use the same passwords for all those, but I don't have the same passwords for my banking or credit cards, or even online gaming. I find it funny that I have to worry about security less on my gaming accounts than my banking passwords because I have authentication apps for the games.
Someone needs to come up with an authentication dongle for USB that has a key generator like the phone apps, but the user never has to enter the actual key code. It could be hundreds of digits long and triple encrypted so it would be harder to hack. The USB device wouldn't even need to calculate it. plug in the USB device with has the encryption keys, the driver syncs a time code with the central security server, a chip on the USB key calculates the access code from the time code and encryption keys, and the key is sent by the PC to the banking web site to authenticate. We just need an HTML5 standard command to retrieve the code from the USB key and pass it on to the web site.
Facebook
Twitter