Comments on: We promise we won’t store your password http://isisblogs.poly.edu/2008/03/30/we-promise-we-wont-store-your-password/ Information Systems and Internet Security Thu, 28 Aug 2008 09:13:15 +0000 http://wordpress.org/?v=2.6.1 By: Dan Guido http://isisblogs.poly.edu/2008/03/30/we-promise-we-wont-store-your-password/#comment-306 Dan Guido Thu, 03 Apr 2008 05:27:01 +0000 http://isisblogs.poly.edu/2008/03/30/we-promise-we-wont-store-your-password/#comment-306 twitter. sigh. twitter. sigh.

]]> By: Dan Guido http://isisblogs.poly.edu/2008/03/30/we-promise-we-wont-store-your-password/#comment-305 Dan Guido Wed, 02 Apr 2008 19:04:43 +0000 http://isisblogs.poly.edu/2008/03/30/we-promise-we-wont-store-your-password/#comment-305 www.spokeo.com http://www.spokeo.com

]]> By: Schmoilito http://isisblogs.poly.edu/2008/03/30/we-promise-we-wont-store-your-password/#comment-304 Schmoilito Mon, 31 Mar 2008 13:37:03 +0000 http://isisblogs.poly.edu/2008/03/30/we-promise-we-wont-store-your-password/#comment-304 I've seen one site ask me for my gmail password, but I can't remember which one it was. What bothers me more are financial institutions that do the same thing. Bank of America offers a service called "My Portfolio" that allows users to give BofA the credentials to all of their online financial service accounts so that BofA can go out and screen scrape them. In addition to usernames/passwords, BofA also asks for security questions/answers for certain sites that require them (like ING Direct). I’ve seen one site ask me for my gmail password, but I can’t remember which one it was.

What bothers me more are financial institutions that do the same thing. Bank of America offers a service called “My Portfolio” that allows users to give BofA the credentials to all of their online financial service accounts so that BofA can go out and screen scrape them. In addition to usernames/passwords, BofA also asks for security questions/answers for certain sites that require them (like ING Direct).

]]>