Robinhood Channels SecurityRetail Banking Robinhood stored user passwords in plain text 25 July 2019 6 5 0 High-flying stock trading fintech Robinhood has warned users to change their passwords after revealing that it stored the sensitive data in plain text, rather than an encrypted format, in its internal systems. Users were made aware of the security mishap in a company email: “On Monday night, we discovered that some user credentials were stored in a readable format within our internal systems." The firm goes on to say that the issue has been resolved and that it has found no evidence that the information was accessed by anyone outside its "response team". The security blunder comes just days after Robinhood raised a massive $323 million round of financing, and amid a growing call for improved security at tech firms following recent privacy breaches at Facebook and Equifax. The company has refused to disclose how many customers were impacted by the issue, nor how it came to make such a rooky error.
Ninjatrader does the same thing, if you know where to look on the user's computer. If they pay me some moolah, I'll tell them how. But they won't. because they DON'T CARE, since it in not THEIR money on the line, just OPM. This plain-text stuff needs to STOP.
Someone recently commented on how I made such a rooky mistake by misspelling "buffoon" as "baffoon." But at least I did not make the rookie mistake of misspelling rookie as rooky, and getting paid to do so. You who pointed this out, you know who you are, and this is pointed right at you. Cut me some slack, jack. (ETJ, nothing to do with you, but the article you posted.)
It's hard to believe in this day and age companies still store plain text passwords on their database. Passwords in plain text on user's computer is understandable because it is required for the auto log in.