Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
ryanlol
11y ago
0 comments
Save
Share
Customer support. A human can then verify the user even if they can only remember a part of the password.
0 comments
3 comments · 1 top-level
top
newest
oldest
stephenr
11y ago
· 2 in thread
Sounds like a security flaw ripe for social engineering
ryanlol
OP
11y ago
Customer support by itself tends to be a security flaw ripe for social engineering.
stephenr
11y ago
Phone support can be tricky yes, but there are other ways to identify the caller without storing their password in plaintext
1 more reply
j
/
k
navigate · click thread line to collapse
