Reply to post: Re: Wouldn't know about MS, but banks...

'Cuddly' German chat app slacking on hashing given a good whacking under GDPR: €20k fine

Anonymous Coward
Anonymous Coward

Re: Wouldn't know about MS, but banks...

the password is probably never stored (hashed or unhashed) as a complete string

with a couple of the UK banks login is as follows...

Step 1 : enter customer id - date of birth followed by a 4 digit number (the 4 digit part is sequential based on account creation and the date of birth, I know this because I have a couple of business accounts with sequential id numbers)

Step 2 : enter 3 randomly chosen characters from a chosen pin No (not the card pin) - standard form fields not drop down

Step 3 : enter 3 randomly chosen characters from your password - again standard form field not drop down

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021