Right - as a commenter on a technical forum - how much overlap do you think there is between yourself and the age/infosec knowledge/technical savvy of the type of person who pays for PHub in 2022?

Doesn't really make much of a difference; "only give your banking info to those you highly trust and only if it's absolutely necessary" has been common sense for longer than the Internet has existed.

You mean your name and bank account number?

Those are basic for doing business. People share them with everybody they deal with.

Is it? Cause a lot of stuff still happens by check even now, which literally has your name and your account and routing numbers just printed on it, which you used to order by sending all of that information via the mail to a random printing company.

I already have to trust my power company, most of my credit cards, my ISP, my gas company, and my landlord with my bank info, all of which are probably less secure and trustworthy than Pornhub...

Sure, but a check is at least ostensibly ephemeral (even if there's nothing preventing someone from jotting down the account/routing number), and there are legal protections against using that info for transactions other than that consented to on the check (hence the signature and memo line and such).

Contrast that with explicitly authorizing PornHub to withdraw from your account at their discretion, as is the case when you're giving them your account/routing number on a web form. That info then gets stored in some database.

And no, I don't give utility companies or landlords or what have you such authorization, either. I mail them a check (thereby not giving them cause to store the account info long-term and not giving them consent to auto-withdraw), or I use a credit or debit card (which I can dispute or change far more easily than I can a bank account). If they accepted cryptocurrencies, then I'd pick that over either of those options.

you completely ignored the question lol

we know that you know, and that we know, but the comment was saying that most people don't.

No, I directly addressed the question: it's common sense, i.e. entirely independent of tech-savviness or age or other factors. It's indeed common sense passed down to me from people far less tech-savvy (and far older) than myself.

I would trust them a lot more than your average consumer fintech. They have been around for a long time and their engineering is nothing to be sniffed at.

> I would trust them a lot more than your average consumer fintech.

That bar is so low I couldn't even trip over it.

Why not? They're a far more reputable business than many online stores, for example.

They are also a far more interesting target because of their size. Imagine downloading all customer information of paying pornhub clients. Assume it holds basic information (name, address, email, payment info), and not any usage data.

I could use that data to extort at least 10% of those people easily (religious people, celebrities, politicians, etc). This is disregarding the price that I'd get for just leaking the other 90%.

Now imagine the fallout of somebody downloading the same info for a local brewery, a big tech company like Atlassian, a household brand like Staples, or even great big Amazon.

The fewer databases storing my banking info, the better.

They're a massive company with a strong and empowered engineering department.