To think we should stop pretending that Internet Security is a thing?

[HelenHen]

Looking at all the hacks on major companies, banks and government departments recently, e.g. Santander, Ticketmaster, local councils. At what point do we just accept that the system is broken?

I don't understand why schools and GPs are so insistent on going down the online route, when all this super sensitive information will just inevitably be hacked?

My child's online school information is all contained in one place. This includes, his DOB, health history, exam results, allergies, parental consents, emergency contacts, behaviour points and detention information, whether his homework was submitted on time, a photo of him, school trip information, etc. What are they thinking?

They are also expected to provide fingerprints to access their canteen account, which is of course held online. I queried this and was told 'oh he can just give a pin instead', which he is doing, and it works for him. So why ask for fingerprints if a pin is fine?

AIBU to expect more security for sensitive information?

Good cyber security costs money. Some companies cut corners and don't invest in good security.

The thought that Artificial Intelligence is said to be advanced enough to accurately impersonate any human voice - a close relative for instance - makes my hair stand on end!

Makes me think twice about answering a call from ANYONE.

It should also be built in from day one, not retrofitted because a bunch of sharp suits turned up and sprayed TLAs and "cost savings" around to kneecap the experts.

Agree. I had a couple of emails recently from. Companies I'd used about problems they had with data.

Get a computer they say, maybe we should go back to Pen and paper.

I really wouldn't worry about "AI". All the "stories" about it at the moment are really (vey) thinly disguised pitches to scare people into investing. Like big data was a few years ago. And the Internet of Things before that. And "Web2.0" before that. Think of 3D TVs and you won't go wrong.

When someone flogging you "AI" can get their "AI" to comb through a few pages of Google search results and remove the crap and the ads, then I'll believe it's here. But since the direction of travel is the other way (companies using "AI" to shove as many ads into Google as possible) we'll have a long wait.

Worry far more about someone nicking your phone and your not setting a passcode and/or allowing messages on your lockscreen. That is a very clear and present danger.

maybe we should go back to Pen and paper

Well certainly for elections. No way would I trust any election that was electronically counted.

Agree with your final note, but I will say that AI voice impersonation is already being used in attacks. The average person isn't really at risk for this currently because of how many recordings you need to get something believable, but it is happening.
And I actually agree with you in general, that hype is being whipped up about AI in the public space to get them to invest, when what people should actually be worried about is how criminals are using it (and have been using it)

Yes, this.

Also for anyone reading this: for the love of God stop signing up to random sites using your work email address and password. It's not safe, it's not secure, and you probably aren't allowed to do it under your companies IT policy anyway. (A lot of companies will have people signing up to random sites using work emails to access free and cheap tools to do their jobs and not hammering it home that you SHOULD NEVER USE THE SAME PASSWORD YOU USE FOR WORK SYSTEMS, but that's another story...)

Passcodes are really the thing here.

And password managers.

I will say that AI voice impersonation is already being used in attacks.

Well it will serve everyone right for using 19th century technology, instead of 20th century technology then, won't it ?