• SmilingSolaris@lemmy.world
    link
    fedilink
    arrow-up
    31
    arrow-down
    3
    ·
    4 months ago

    Take your social security number. Change the last number by one. Congrats, you have stolen someones number.

    It isn’t secure or random in any way. Infact, by doing the above you will have the number of a person born probably in the same hospital as you.

    • joshhsoj1902@lemmy.ca
      link
      fedilink
      arrow-up
      10
      ·
      4 months ago

      Isn’t it the address being leaked with it that makes this notable?

      You can’t add a number to a SSN and also add a number to the street address to then narrow down which full names are associated with that SSN to then possibly be able to use it.

      I didn’t think the number had any use on its own

      • SmilingSolaris@lemmy.world
        link
        fedilink
        arrow-up
        12
        arrow-down
        1
        ·
        4 months ago

        The address does make it a lot more useful, but the point that I am making is simply that the number itself has never been secure, and this kinda failure was inevitable due to only needing slightly more info than the number itself. A number which itself is already partially identifying.

        We shouldn’t use social security numbers like we do.

    • BCsven@lemmy.ca
      link
      fedilink
      arrow-up
      3
      ·
      4 months ago

      Is usa numbering just incremental? Canadian ones use a checksum type setup to determine if it is a valid SIN