Denney, while hacking me you probably saw that I’m a product designer, so I’m a bit of an expert on user engagement mechanisms, and it’s common knowledge in my profession, that when forced to change passwords, customers drop off faster than mosquitos die when they bump into those purple zapper lights.
Tech companies know this, and placing higher value on user engagement over user safety, most deliberately neglect to remind us to change our passwords, even if they’ve remained unchanged for years! This fact is something I’m sure you and your hacker colleagues are happy about, as it has turned out to be a very lucrative aspect of your enterprise!
Customer ignorance + Company negligence = Opportunity (for hackers)
LinkedIn sends me so many emails. Mostly it’s bullshit ego carrots, “Someone has viewed your profile! Just gotta pay up to find out who!” But, they are yet to remind me, even once, to update my password…
I have a vague memory of rather generic and dull sounding messages that both LinkedIn and Dropbox sent weeks after it leaked in the press that they’d been hacked. Words to the effect of: “There is nothing to worry about, SOME user information had been compromised and that everything was under control and that I should continue using and trusting their products as normal.”
Isn’t it naive of us to believe them when they tell us everything will be fine? But you can understand why we do right? They are multi billion dollar companies who have hired the best security experts in the world, if we can’t trust them with our private data, who can we trust?