Friday, April 6, 2018

Infosec quotes - customer service passwords

If you are on a customer service team and can see a customer’s password in your system, that means your IT team is storing password incorrectly. I’d recommend escalating this as a security issue. Passwords should be hashed so they are not reversible, and if a customer forgets their password they reset it ... you shouldn’t be able to read back to them what their password is. 

No comments:

Post a Comment