Followed the thread on The Cloud and made me think about a current situation.
Signed up online for a new broad band provider, and still in cooling off period.
Received in the post yesterday a letter that contained details of my account (nothing I did not already know) and what surprised me it included as a password hint part of the actual password with other characters just as an *. Coincidentally or not, the number of * corresponds to the actual number of non displayed characters.
Reading the letter, if I understood it correctly, they are saying that the online password is used not only for online access, but if I phone them and if I setup my router manually. What, is that not increasing risk?
Given that they have printed the actual number of characters in my password and shown some 40% of it, printed other details useful for getting thro any security (username, email address, etc,) have they compromised my security?
I am not aware of dealing with any other company that uses the same password for telephoning as online access (let alone for something like a router password). If I have to give my online password to speak on the phone, what is to stop rogue staff from misusing the details?
Should I just cancel now (18mth contract if I don't)? Thoughts appreciated, thanks.
Post edited at 09:17