Here's a statement of the obvious: The opinions expressed here are those of the participants, not those of the Mutual Fund Observer. We cannot vouch for the accuracy or appropriateness of any of it, though we do encourage civility and good humor.
I use BitWarden for my corporate accounts and LastPass for personal. Will probably switch out of LP soon.
My prior references to SIM hijack was an attacker taking control of your phone number through the port process, not emulation.
2FA can also b…
The notion of account aggregation services being 100% safe based on the collection of beliefs below is .... [fill in the blank]
- There isn't a detailed hack manual
- There aren't in the public domain dozens of published cases
- Published RH hacks …
I'm writing fiction David, I've already stated that explicitly. Here is some more fiction about zero click attacks
https://www.csoonline.com/article/3660055/zero-click-attacks-explained-and-why-they-are-so-dangerous.html
Meanwhile you on the other…
Snippet below from a Dec 14, 2022 post is a figment of imagination from both Krebs and Microsoft. They both have overactive imaginations. You have been warned.
--
The security updates include patches for Azure, Microsoft Edge, Office, SharePoint …
Sarc: Off
Any device connected to the internet can be hacked. To pretend otherwise is naivete that will not serve you well.
And yes any really means any -- PC, phone, Xbox, lightbulb, thermostat, car, garage door opener, etc.. I repeat in case y…
@david
Boy you love to bluster and also change the goalposts I see. Inspired by the current soccer World Cup?
So we went from "show me how a brokerage account can be wiped, post some links" to "without operator error, how can an account be wiped" …
@OJ
Credentials is a commonly used synonym in InfoSec circles for anything that can be used to login to an account. That includes userid/pswd but can also include other things like hard and soft tokens, 2FA, MFA, pictures, retina scan, fingerprints…
@david
You need to remove the cobwebs and emerge into the light a la Rip Van Winkle.
Reddit isn't TikTok for starters -- it is used by much more than teens, $85K isn't chump change, that's a lot of money for the vast majority of the population. Te…
@David
Carry on with your belief that brokerage accounts cannot be wiped.
Interesting to note that you did not provide any substantive response at all to the other points I made -- e-mail hijack, SIM hijack etc..
The CNBC link within the 2nd link…
PersCap is Personal Capital which provides free account aggregation as a hook to get you to subscribe to their paid services.
It's a fantastic product (by far the best aggregation service I have seen and I have used 5+) but not zero risk by any str…
@david
I have zero interest in educating you on how brokerage accounts can be hacked, how your account can be wiped and writing an instruction manual on the topic.
I'm not offended if you choose to not believe anything I've stated here but I enco…
https://clearcode.cc/blog/what-is-data-broker/#wait…-is-this-legal?
Literally every single physical and digital entity that you interact with is selling the data that comes from that interaction. Epsilon, Acxiom, Oracle etc.. have 10,000 data point…
@Derf
I can't make out if your post is sarcasm or not but I'll assume it is not.
To answer your question in broad strokes, anytime you are online, regardless of whether you have a @gmail address or not, the site you are visiting has the technical …
@davidrmoran
To put it diplomatically, based on the questions you are asking on this thread you are grossly uninformed.
You don't have to believe anything I state, Google is your friend unless you believe that is nonsense too
@Derf
2FA can be hack…
A hack of Yodlee is no different than a hack of LastPass.
Using stolen credentials the attacker can liquidate your portfolio and move money out of the brokerage account.
For example if your Robinhood account got hacked, an attacker can buy crypto…
Using Yodlee via Schwab vs. using Yodlee or equivalent directly does not offer any additional security. Yodlee is a cloud based service, it can be hacked directly without needing to hack Schwab.
Note that the account credentials you are providing (…
Account aggregation isn't technically trivial, there's likely less than 10 tech cos that do it. I doubt any of the brokerages or banks have built their own aggregator, they are all using Yodlee, Mint or equivalents.
I'm currently allocated as per below
- Alts: 55%
- US Stocks: 13%
- Intl Stocks: 3%
- US Bonds: 24%
- Cash: 5%
In 2023, I expect to get cash closer to 10% and Alts closer to 50% Good luck to all
I've been banking online for 15+ years. I still have an account with one of the Big 4 and keep just above the minimum balance to avoid monthly fees. Best of both worlds though for all practical purposes I can close out my physical bank account.
Ove…
There are huge wind power farms in the Corpus Christi area. TX is a pretty windy state and because it is flat, wind can be pretty strong all the way north in the DFW area.
Wind power will keep growing in TX and so will solar both due to the abundan…
Math (or lack thereof) + lethargy issue.
In today's world where a fully FDIC protected bank account + ACH transfer can be opened and done within minutes on the phone it boggles the mind. Buying CD's/Treasuries within brokerage account is even more …
@sma3
That is pretty much the credo of some GOP politicians.
I got mine, screw the rest of you (but I'll come back for more when I need it)
A pretty sad state of affairs on the awareness of the electorate when so many red states are net takers fr…
Humans generally aren't good at banding together for a danger that is sight unseen for many, whose timing cannot be predicted well and the damage is more like a slow moving train crash. Boiling frog syndrome. Societal change happens after major cata…
@Lewis
Forecasting, having and using cash reserves + line of credit to prevent a run on the bank is a common practice amongst seasoned managers.
Managers who have spent a decade or more to build a reputation will "generally" not resort to ethicall…
CELFX did not exist in March 2020. Just saying. Inception date is July 1, 2021
Swedroe is certainly a known name but the conclusion of his linked AP article is as per below.
"Bond investors can avoid the risks and costs created by stale pricing in…
The two stats that caught my eye from the links posted by @Lewis were
-- $1.2B aggregate loss to buy and holders due to traders gaming the illiquidity
-- 4 bips of return loss
Admittedly these numbers are above zero but in the context of the bond m…
Pricing of illiquid assets is part science and part art but to connect that reality to a blanket statement along the lines of "ergo all these returns are bogus" is quite a leap.
The issue of the "correct" price for thinly traded or illiquid assets …
We'll have to agree to disagree.
I believe you are implying that there is funny business going on based on the return profile and that managers cannot generate strong alpha within the debt or alternative space.
Out of sheer curiosity what are the …
@Lewis
- NICHX and CELFX invest in a wide variety of debt instruments, not just corporate debt. For example litigation financing, structured capital, royalties, etc..
- Both are debt specialists with pedigree and a track record. This is their bread…
India is already manufacturing iPhones.
Comments about navigating Indian bureaucracy are valid, system of different federal + state regulations is comparable to the USA but no question a lot more laborious to navigate and master.
I'm personally invested in interval funds NICHX and CELFX for what I believe are good risk adjusted returns. Currently evaluating CEDIX.
** Not investment advice by any means, buyer beware **
Fwiw, I was fixated on ER's for more than 20 years and …
I've subscribed previously to Rida's service and agree with sma3 comment on the sheer volume of recommendations. In effect the service might as well be an ETF or CEF with a write up of each position.
Each individual write up is well done and has de…
