Tuesday, September 05, 2006

E-Security Has Its Limits

I recently decided to change my passcode to my online banking account. I duly logged into my account, followed the appropriate prompts, then submitted a new password. I was greeted with the screen that congratulated me for successfully changing my password, and I was off on my way with my whole new password.

A few hours later, I logged in to my email account, where I found a nice little email from said bank:

Subject: Alert: Passcode Reset


To: Dennis!

Your Online Banking Account Passcode was reset on 09/04/06.

We care about your security so, for your protection we are proactively notifying you of this activity.

If you did not reset your Passcode, please sign in to www.banksite.com and review your account (s) for any irregular activity and then contact us immediately at 1.800.XXX.XXXX.

While I'm quite pleased that my bank is concerned enough about my security that it would let me know when some substantial change like this has happened with my account, this email is a bit nonsensical. It tells me that the passcode has been changed... then it says if I didn't change it, to log in to my account! If I wasn't the one to change the password, how was I supposed to log back on to check for fraud?

No comments: