MicrostockGroup
Agency Based Discussion => iStockPhoto.com => Topic started by: rene on July 12, 2015, 23:45
-
Apparently, according posts on iStock forum our passwords are stored as clear text. It results in massive security breach. In addition, they sending these passwords in email. One more time iStock shows how unprofessional they are. Related topic:
http://www.istockphoto.com/forum_messages.php?threadid=367497&page=2 (http://www.istockphoto.com/forum_messages.php?threadid=367497&page=2)
-
Yep. I got that email with my user name and password included. I was not impressed.
-
It would be unbelievable if it wasn't istock doing it. I hope one day someone competent takes over there.
-
This is scary! I used to use the same password for all micros. Very happy I changed them to all different awhile back when I started making decent money.
-
kelvinjay says:
If anyone is having trouble finding the email that was sent to them in June - try a search for [email protected] - as that's the address where it came from.
Or simply do a search for your iStock password and you'll find it all the same!
-
I have yet to see the new forums, but I'm surprised people actually LIKED this old forum. I think it's a non-intuitive, hard to navigate piece of garbage, with the worst search functionality I've ever seen. Whenever I search for something, it digs up threads from 2005 without any way to sort the search results on date.
-
I have yet to see the new forums, but I'm surprised people actually LIKED this old forum. I think it's a non-intuitive, hard to navigate piece of garbage, with the worst search functionality I've ever seen. Whenever I search for something, it digs up threads from 2005 without any way to sort the search results on date.
I agree that's the search function is almost totally useless.
But the rest I find perfectly easy.
The new one, on the other hand :o ???
-
As a professional software developer I was very "happy" to get my password sent to me in clear text too... Unbelievable, what a security risk, even if they store it encrypted or encrypt the whole database. But yes, somehow it does not surprise me with that company. At least now I know again why I do not reuse the same passwords for important authentications...