One Comment

  1. what difference does it make whether they can get the passwords or not, if they have access to the database they already have access to everything in everyone’s accounts. Resetting passwords seems like a pointless exercise to make people feel better. In fact if you get into a database the simplest thing to do would be change everyone’s email address to something you have access to, then when the company send out blanket ‘change password’ emails you would have instant access to change all account passwords to something you do know.

Comments are closed.