Telstra joins the Plaintext Password Parade

Internet

Detailed information about Telstra’s customer accounts – including usernames and passwords – has been found to be sitting on the open web for anyone to access via a Google search. ~ Sydney Morning Herald

Inexcusable. No database should be storing passwords as plaintext. If people forget their passwords, they should be reset.

No doubt we'll read a press release saying they've learned a lot from their mistake, and have changed their system. Here's hoping they do learn from it, and implement some basic security protocols. They can start by ditching their revised coloured logos and going back to their retro orange one. It looks more serious, and classy.

Author bio and support

Me!

Ruben Schade is a technical writer and IaaS engineer in Sydney, Australia who refers to himself in the third person in bios. Wait, not BIOS… my brain should be EFI by now.

The site is powered by Hugo, FreeBSD, and OpenZFS on OrionVM, everyone’s favourite cloud infrastructure provider.

If you found this post helpful or entertaining, you can shout me a coffee or buy some silly merch. Thanks!