• AA5B@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    10 months ago

    Or you could click the setting. Or not login to a website you didn’t expect to see. Or most scammers won’t bother because it’s risky and not scalable: you need to be physically present. This doesn’t seem like a likely vector.

    The recommendation of being notified when new keys are created, is a good one though.

    … except I could swear it already does

    • RealFknNito@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      10 months ago

      Proprietary software is often locked down to be idiot proof and tamper proof to the average consumer. Actually disabling the wifi (not just turning off SSID broadcasting) or other exploitable points might require a deeper level of access than just the settings page.

      And it’s not websites people are concerned about. There’s a pretty common hacking concept where you attack the weakest connected device. If your car connects to your garage door opener, your coffee maker, your washing machine, all your smart devices - they only need to get access to one to get access to all of them since those devices are ‘trusted’. Your car doesn’t know why your coffee maker says ‘unlock’ but it’s gonna listen, it trusts your coffee machine.