• CleoTheWizard@lemmy.world
      link
      fedilink
      English
      arrow-up
      33
      ·
      6 months ago

      Idk why you would be cracking a PIN code. They aren’t really typically used for online security (and shouldn’t be). And if your attacker is targeting you, the PIN code isn’t meant to stop them.

      What it does stop is you finding a random card on the side of the street and finding the nearest ATM to withdraw all of the cash from.

      • bountygiver [any]@lemmy.ml
        link
        fedilink
        English
        arrow-up
        9
        ·
        6 months ago

        which will lock the card after 3 tries, so even if you are using your birth year chances are they are not going to guess it

      • supercriticalcheese@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        ·
        6 months ago

        Revolut which is a European wide online bank mentions a passcode required to access your account + a two factor authentication typically on the same device…

        I recall I was not confident on the security options and opted to close the account before even finishing the registration 😅

  • Bubs12@lemm.ee
    link
    fedilink
    English
    arrow-up
    46
    ·
    6 months ago

    My bank just gave me a random PIN number. Choosing my own was not an option.

    • SpaceNoodle@lemmy.world
      link
      fedilink
      English
      arrow-up
      15
      ·
      6 months ago

      I’d forget that so hard.

      I used to be able to memorize random sequences of numbers when I was young, but my brain doesn’t do that tedious shit any more.

        • SpaceNoodle@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          ·
          edit-2
          6 months ago

          Maybe it was just because it was the time before smartphones and it was actually necessary to remember phone numbers, credit card numbers, account numbers, addresses, etc. All that is offloaded to a device now.

          I still remember some old addresses, SSNs, and pre-Internet bank account details.

          • MenacingPerson@lemm.ee
            link
            fedilink
            English
            arrow-up
            1
            ·
            6 months ago

            it was actually necessary to remember phone numbers

            Hehe, I memorised all my family’s phone numbers as a child. Do all children have devices now?

            • SpaceNoodle@lemmy.world
              link
              fedilink
              English
              arrow-up
              1
              ·
              6 months ago

              My family’s “phone numbers” were just one phone number, because we had one telephone in the house.

              From what I understand, most children do have devices now.

    • Flughoernchen@feddit.de
      link
      fedilink
      English
      arrow-up
      4
      ·
      6 months ago

      I was able to change it, but once I found out I had the random one memorized anyways and changing would’ve been even more confusing.

        • Cethin@lemmy.zip
          link
          fedilink
          English
          arrow-up
          4
          ·
          6 months ago

          I would say probably more 451 games (essentially synonymous with Immersive Sims) where there’s almost always a door with the code 0451, a reference to System Shock, where the first door uses this code as a reference to Fahrenheit 451. In the end you’re right, but it’s more a reference to this repeated reference (which is in itself a reference) than a reference to the book itself.

          • gamermanh@lemmy.dbzer0.com
            link
            fedilink
            English
            arrow-up
            4
            ·
            6 months ago

            Also it’s the first code entered into the first door to leave the first room in the first System Shock, which is likely what thread OP was referring to.

            SS did it and so a bunch of other games do it in reference, like BioShock

  • chemical_cutthroat@lemmy.world
    link
    fedilink
    English
    arrow-up
    22
    ·
    6 months ago

    Looks like there is a bright at 2846, which makes me laugh. My pin is safe, though, at least in this graph, so I guess I’m good.

      • Ms. ArmoredThirteen@lemmy.ml
        link
        fedilink
        English
        arrow-up
        9
        ·
        6 months ago

        For my main card it is from the pin I used to reload my Gauntlet save at the arcade, which was based on an easy to memorize joystick pattern used to select the pin on the cabinet

  • xia@lemmy.sdf.org
    link
    fedilink
    English
    arrow-up
    19
    ·
    6 months ago

    I wanna know what these black dots are. Forbidden numbers? Numbers the mind cannot guess?

    • FiniteBanjo@lemmy.today
      link
      fedilink
      English
      arrow-up
      10
      ·
      edit-2
      6 months ago

      Just the least used. 9805 for example. Mines dark orange and I wasn’t even trying, I just made it a physical pattern rather than a number combo.

      EDIT: You know, I bet 9805 is gaining popularity in countries that use the Day/:Month/:Year format. Aug 9th 2005 is the birthday of a fair number of adults, now.

  • Rentlar@lemmy.ca
    link
    fedilink
    English
    arrow-up
    15
    ·
    6 months ago

    If the bank is going to make me memorize both a unique 10+ character password and a 4 digit pin, of course I’m going to make a dead easy PIN.

    • stoy@lemmy.zip
      link
      fedilink
      English
      arrow-up
      2
      ·
      6 months ago

      I have never had a ststic password for my bank, is that even legal?

      • ECB@feddit.de
        link
        fedilink
        English
        arrow-up
        4
        ·
        6 months ago

        For any sort of online banking you generally need a password.

        A lot of banks these days are online only.

        • stoy@lemmy.zip
          link
          fedilink
          English
          arrow-up
          1
          ·
          6 months ago

          I have never used a password with my bank, when I started using my online banking service I got a hardware token, I now use an app on my phone

  • Mossy Feathers (She/They)@pawb.social
    link
    fedilink
    English
    arrow-up
    8
    ·
    6 months ago

    Here’s a question, would it be more secure to choose a rare pin number or a pin number that is extremely common (ignoring obviously bad ones like 1234, 4321, meme numbers, numbers with four repeating digits, etc)?

    Logic suggests that picking a rare number is better than a common one, because common ones are the ones that people would try first when attempting a bruteforce attack. Yet at the same time, personally if I was trying to brute force a pin, I’d start with obvious choices like 1234, 4321, four repeating numbers and meme numbers, and then switch to alternating between common-rare-common-rare if I was trying to brute force a pin number (starting with the most common and most rare). That’d mean the pin numbers that are the most secure when it comes to brute force attacks would be somewhere in the middle.

    Granted, 4-digit pin numbers aren’t very secure considering there are a maximum of 10,000 combinations, and social engineering attacks like phishing mostly bypass the need to brute-force the combination entirely. As such, the effort would likely be inconsequential and pointless outside of not picking ridiculously bad pins like 1111, but I’m still curious.

    • dmention7@lemm.ee
      link
      fedilink
      English
      arrow-up
      42
      ·
      6 months ago

      If your goal is to access a random account as quickly as possible, why would you ever try anything other than the next most common PIN?

      It’s not like Vegas where longer odds = higher payout. Less common PIN just means any given account is less likely.to use it, and therefore it’s less likely to be correct on any given attempt.

      If you look at it another way, the brightness of each square on that grid is the probability that there is a prize inside. If you wanted the most prizes as quickly as possible, picking the darkest avsilsble square is always a bad choice.

      • apotheotic (she/her)@beehaw.org
        link
        fedilink
        English
        arrow-up
        2
        ·
        6 months ago

        If you have some degree of knowledge about the target, and know they are somewhat security savvy (but also somehow only have a 4 digit pin protecting this account) then it might be wise to check the pins that would be considered more secure. Or, at least, to perform some data processing on the source data for this graph which culls stupid pins (and remember the ones you cull to add to the end of your brute force approach), and from there continue with the highest probability.

    • kryptonianCodeMonkey@lemmy.world
      link
      fedilink
      English
      arrow-up
      17
      ·
      edit-2
      6 months ago

      As you said, 4 digits is not enough to make something secure to a computer. 10,000 permutations is milliseconds of computation.The only reason it’s at all secure for a credit card is because you’re generally only using the PIN for in-person transactions where there are more practical limits on attempts (Narrator: “After 2 hours and 632 attempts, the cashier began to get suspicious…”), if not hard cut offs from the bank/processor for failed attempts. If we’re being realistic, as long as your PIN isn’t in the first 3-6 numbers they can try, it’s probably secure enough in itself. Theives want low hanging fruit. Easier to try to social engineer your PIN then to manually brute force it. As long as you’re avoiding the most obvious first attempt numbers, go ahead and use your dog’s birthday or your childhood home’s address. It’s fine.

    • chiliedogg@lemmy.world
      link
      fedilink
      English
      arrow-up
      4
      ·
      6 months ago

      Honestly, almost any PIN is probably fine so long as you don’t have it written on the back of the card or something. Cards get locked after like 3 failed attempts, so the number itself doesn’t have to be unique or rare.

      Hell - even if you gave them the first digit and the thief could eliminate 90 percent of of the remaining numbers based on probabilities, the thief would still have less than a 1:30 chance of getting the right combination before the card was locked.

  • nucleative@lemmy.world
    link
    fedilink
    English
    arrow-up
    8
    ·
    6 months ago

    White is most common and dark orange/grey are the least common? By how many standard deviations?

    • over_clox@lemmy.world
      link
      fedilink
      English
      arrow-up
      7
      ·
      6 months ago

      Very valid question, but honestly I hardly think it matters much in this context. It highlights people’s patterns, and apparently humans are the worst to ask for random numbers.

      On a side note, what’s up with the hotspot at 5049?

        • over_clox@lemmy.world
          link
          fedilink
          English
          arrow-up
          4
          ·
          6 months ago

          Hmm, it seems you’re probably right Last night I tried lining it up with a random toothpick on the table in front of me LOL!

          I tried again using the edge of a sheet of paper, and yeah it does seem more like it’s 5150.

          Whatever. Still, what’s up with that?