If you are on a customer service team and can see a customer’s password in your system, that means your IT team is storing password incorrectly. I’d recommend escalating this as a security issue. Passwords should be hashed so they are not reversible, and if a customer forgets their password they reset it ... you shouldn’t be able to read back to them what their password is.
https://twitter.com/tmobileat/status/981418339653300224?s=21
No comments:
Post a Comment