We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Password update prompt
Options
Comments
-
4316 days here :-)
But really - an insecure password change form on a financial site? Are we still in the last decade?Do Money Saving sites make you buy more bargains - and spend more money?0 -
4766 days!Stompa0
-
1. To see what MSE does when there's a security prolem with the site read this MSE news story from 2009: https://www.moneysavingexpert.com/news/banking/2009/11/all-web-users-urged-to-run-anti-virus-check
2. Not everyone has (yet) had to change their password, I'm one who hasn't been asked. But see 3...
3. Back in 2011 I received spam on an email address only ever used for MSE and on investigation it turned out that my account had been accessed from someone else apparently in Belgium or Germany. Since then I've been getting prompted for passwords more often here than for most of my work and any of my financial accounts. I use reasonably secure ones.0 -
So everyone has to change their passwords all of a sudden, including newbies and it's just because some haven't been changed for a while and it's good to change them regularly anyway.
Errm yeah right..................0 -
While changing my password just now I found the system still had an email address that I haven't used for about ten years. I corrected it, only to be told "that email address is already in use, have you forgotten your password?". Err, no...
Anyway by re-starting the whole palaver I have apparently successfully changed my password, but the system is still showing a defunct email address. Presumably this doesn't matter then?
I haven't bogged off yet, and I ain't no babe
0 -
Any time I have seen a forced password change, it has always been down to a security breach.Can you confirm or deny whether this site has been hacked and member's passwords stolen?
It's unusual to require a password change after 12 years without a good reason.
To claim that this move is to improve security and enforce regular password changes (far more frequent that what Government organisations who have access to confidential data use if someone had to change their password after 11 days!) whilst at the same time not implementing and using HTTPS as is becoming the norm for websites to implement, suggests to me that there has been a breach.
When MSE does implement HTTPS (and they should do so as soon as possible), I would suggest everyone change their password again as a precaution to a strong password not used anywhere else because at this moment in time, the connection is not secure and anyone could intercept data between your browser and the website.0 -
I wonder if its to do with the removal of the spam button for a few days? It was speculated someone had numerous accounts and used them to press the spam button which led the automatic deleting of posts and threads.Originally Posted by shortcrust
"Contact the Ministry of Fairness....If sufficient evidence of unfairness is discovered you’ll get an apology, a permanent contract with backdated benefits, a ‘Let’s Make it Fair!’ tshirt and mug, and those guilty of unfairness will be sent on a Fairness Awareness course."0 -
Well that was a right pain in the !!!!!
I have always only used the login with Facebook option.
Do you think it would accept my Facebook password to allow me to change it. No chance.
Right faff to sort it.
The silence from the Forum Team as to why this is necessary is rather worrying.
IF there has been a security breach, surely we need to know as I'm sure some people will have used the same password for other things (people are by nature lazy where these things are concerned
) 0 -
Hi,
I’m sorry for the delay replying.
This isn’t the first time we’ve sent a prompt out in this or other ways. MSE’s priority is to ensure your security so we’ve prompted everyone to change them.
We realise it might be frustrating but your security comes first.Could you do with a Money Makeover?
Follow MSE on other Social Media:
MSE Facebook, MSE Twitter, MSE Deals Twitter, Instagram
Join the MSE Forum
Get the Free MoneySavingExpert Money Tips E-mail
Report inappropriate posts: click the report button
Point out a rate/product change
Flag a news story: news@moneysavingexpert.com0 -
So have account details been compromised?0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 350.8K Banking & Borrowing
- 253.1K Reduce Debt & Boost Income
- 453.5K Spending & Discounts
- 243.8K Work, Benefits & Business
- 598.7K Mortgages, Homes & Bills
- 176.8K Life & Family
- 257.1K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards