Telstra joins the Plaintext Password Parade


Detailed information about Telstra’s customer accounts – including usernames and passwords – has been found to be sitting on the open web for anyone to access via a Google search. ~ Sydney Morning Herald

Inexcusable. No database should be storing passwords as plaintext. If people forget their passwords, they should be reset.

No doubt we'll read a press release saying they've learned a lot from their mistake, and have changed their system. Here's hoping they do learn from it, and implement some basic security protocols. They can start by ditching their revised coloured logos and going back to their retro orange one. It looks more serious, and classy.

Author bio and support


Ruben Schade is a technical writer and infrastructure architect in Sydney, Australia who refers to himself in the third person. Hi!

The site is powered by Hugo, FreeBSD, and OpenZFS on OrionVM, everyone’s favourite bespoke cloud infrastructure provider.

If you found this post helpful or entertaining, you can shout me a coffee or send a comment. Thanks ☺️.