Not the password to unlock your phone, but the credentials your bank may require to verify your identity over the phone. A security question/answer, a passphrase or a sequence keyed during the call.
This is correct, i should have said “telephone banking password/passcode” but also the security questions are at best hash encrypted (so basically plain text).
I had thousands of hours of call recording and millions of customer details on my work laptop all unencrypted.
The security for enterprise telephony companies is seriously lax, I wouldn’t be surprised if a few unexplained leaks originated from these companies.
Can you explain more about this? You’re saying the bank app is grabbing this data from your phone, or what are you saying?
I’m not saying you are wrong, necessarily, I’m just surprised to hear it
Not the password to unlock your phone, but the credentials your bank may require to verify your identity over the phone. A security question/answer, a passphrase or a sequence keyed during the call.
This is correct, i should have said “telephone banking password/passcode” but also the security questions are at best hash encrypted (so basically plain text). I had thousands of hours of call recording and millions of customer details on my work laptop all unencrypted. The security for enterprise telephony companies is seriously lax, I wouldn’t be surprised if a few unexplained leaks originated from these companies.