Plusnet ignores GCHQ, spits out plaintext passwords to customers
Alexander J. Martin reports:
Contrary to password storage security standards, BT-owned Plusnet is still delivering plaintext strings back to forgetful users, and seems to have no plans to tidy itself up any time soon – despite years of warnings from security experts and the advice of GCHQ.
Plusnet has stated that it “goes to great lengths to ensure we protect and secure our customer data”, however plaintext passwords are still viewable by support staff and users.
Read more on The Register.