The requirements were to use at least one capital letter, at least one number, and EXACTLY ONE of a short list of special characters in your password. It also could be no longer than 10 characters.

Major wtf moment.

[–] luciferofastora@feddit.org 2 points 1 day ago

FixUrSh1t!

When the plaintext-stored password inevitably get leaked at some point, I hope whoever actually reads through that list gets a laugh out of it.

[–] mangaskahn@lemmy.world 3 points 1 day ago (1 children)

It was a financial site wasn't it. They're the worst for not updating security guidelines.

[–] JayGray91@piefed.social 6 points 1 day ago* (last edited 1 day ago)

There are various reasons I hate the banks I use. One of the top reason is this ancient obsolete password rule.

The biggest reason to hate my banks is they're forcing to use their android app and policing how I can use my phone by refusing to run if I have accessibility service on, and developers options enabled.

I just keep updating my reviews as they are anti disabled people[1].

[1]~~Please correct me on the proper term because I'm ESL and I forgot.~~

[–] surewhynotlem@lemmy.world 1 points 1 day ago

That's means they're storing your password directly in a database somewhere. Not even hashing it. Super lazy coding.