- Joined
- Oct 20, 2004
- Location
- Oxford
Forgot my password the other day and so followed the prompts on their site. Was horrified to see that all they required of me was my email address and my date of birth, both of which are virtually public knowledge considering how often you have to give them, not least to the casinos/sportsbooks that you may be using moneybookers for. Didn't even have to log in to my email account and follow a link, it just took me straight away to the ability to change my password.
They claim that they have very sophisticated but secret security in place, but I see no way how this could have taken place given these were the only details I was asked for. They also claim that the usual process involves a verification code sent by sms but this certainly wasn't the case when I did it.
Their suggested solution is to apply for a 'security key', the kind that are becoming more common for internet banking, where you have to input your pin into a device which generates a random password each time. I resent these as they defeat the whole point of the internet when you have to carry a dozen of them wherever you go where you may need to access an account, so it really is no substitute for having proper protection in the first place.
I'm not sure what the other solution would be, given that they seem to be in complete denial that there is any problem, other than using a unique email address that you give to nobody, and treating that as your password, but then some casinos get sniffy if your registered email address is different from your moneybookers one so that isn't perfect either.
They claim that they have very sophisticated but secret security in place, but I see no way how this could have taken place given these were the only details I was asked for. They also claim that the usual process involves a verification code sent by sms but this certainly wasn't the case when I did it.
Their suggested solution is to apply for a 'security key', the kind that are becoming more common for internet banking, where you have to input your pin into a device which generates a random password each time. I resent these as they defeat the whole point of the internet when you have to carry a dozen of them wherever you go where you may need to access an account, so it really is no substitute for having proper protection in the first place.
I'm not sure what the other solution would be, given that they seem to be in complete denial that there is any problem, other than using a unique email address that you give to nobody, and treating that as your password, but then some casinos get sniffy if your registered email address is different from your moneybookers one so that isn't perfect either.