I feel like maybe someone could convince people over the phone to give them access if they explained correctly that the fields have random strings and roughly how they are formatted, but claim to have forgotten what they are
In a properly secure system the rep can’t see the code but must type it in to get to your data. If they can get to it without your secret, they can be tricked into supplying it or may abuse their access themselves.
If they’re doing it that way then it’s dumb for these to be questions about your life because the point of that is to make it things that people will definitely be able to remember, but realistically you’re only going to remember the answer in general, not necessarily the specific wording or how the answer was formatted.
I feel like maybe someone could convince people over the phone to give them access if they explained correctly that the fields have random strings and roughly how they are formatted, but claim to have forgotten what they are
In a properly secure system the rep can’t see the code but must type it in to get to your data. If they can get to it without your secret, they can be tricked into supplying it or may abuse their access themselves.
If they’re doing it that way then it’s dumb for these to be questions about your life because the point of that is to make it things that people will definitely be able to remember, but realistically you’re only going to remember the answer in general, not necessarily the specific wording or how the answer was formatted.
For anything properly made the words are not stored in a format the service rep can read, they are hashed
You could convince a cs rep to open it with a sob story and a fake sniffle.
Fortunately, most places have gone away from giving CS repels that kind of access.