If you answer security questions honestly, you're very vulnerable to account takeover. Most of the answers are public information about a person (where did you grow up kind of thing), or so arbitrary I wouldn't remember what I answered anyway (what's your favorite movie/food/etc).
The best strategy I've found is to answer them with random passphrases, and store the answer in my password manager.
Passphrases are important because you want it to be words you can speak over the phone. It's often customer-service who will ask.
No comments yet.
