Google plans to automatically set up two-factor authentication for 150 million accounts by the end of the year. Could this be a dangerous approach to securing their users?

Identity & Access Management (IAM)Data Privacy & Protection

Yes, users should be able to opt in vs. being autoenrolled.83%

No, all users should be autoenrolled for security purposes.16%

180 PARTICIPANTS
2.2k viewscircle icon1 Comment
Sort by:
Director in Manufacturing4 years ago

For free accounts I would normally side for users to sign up. However by auto enrolling I hope it purges a lot of SPAM and fraud accounts.

Lightbulb on1

Content you might like

Curious how people are dealing with fraud, and specifically tech support scams, in their organisation. Our service desk have a protocol (using personal questions and answers or escalation to a manager) when validating staff requesting password resets. This wouldn't be scalable to our wider population.  I've heard of one tech firm implementing something simple like 2 random words generated on an internally hosted website every, say, 60s that can be used as a challenge & response. Does anyone have any other smart, easy to use, bits of tech that I should consider as part of a wider on-going education and awareness campaign?  I'm assuming this is a hot topic for many of you, given the recent Quick Assist social engineering ransomware attacks.

Has your organization experienced any impact (direct or indirect) from the executive orders aimed at government spending? Were you able to do anything to plan ahead for this? What precautionary steps should one be taking?

Read More Comments

Does your org do anything for Data Privacy Week?

Yes (tell us about it in the comments)53%

No but we should39%

No7%

View Results

What strategies can organizations use to address the added compliance burden that comes with AI-enabled tools? How do you keep up with changes to both the vendor’s Terms of Service as well as various data privacy laws?

Read More Comments

What's the biggest IoT security vulnerability today?

Weak passwords8%

Lack of consistent update or patch processes37%

Unsecured network services37%

Outdated or unsecured IoT app components8%

Unsecured data storage and transfer5%

Something else (comment below)3%

View Results