opusman
Senior Member
- Joined
- Jun 27, 2006
- Posts
- 6,009
The less people that know you pin, including 3rd party apps the better! Without knowing where and how they store / transmit your data, it is another risk I am not exactly comfortable with. All it takes is one rogue employee regardless of how secure they think things are.
One rogue employee, one badly configured server, one unpatched bug - the number of ways your data can be stolen from a website are numerous. Look at the recent Yahoo breach, 1 billion accounts stolen back in 2013 and they've only just decided to let people know. Plug your email address into https://haveibeenpwned.com/ and see how many breaches it turns up in - you might be surprised.
This is why I'll never use the AFF Verified feature. AFF themselves may have the purest of intentions but how can you know for sure how secure their system is?
Same as that POLi thing, I can't understand why anyone would trust that. You are giving out your internet banking login details to a third party and trusting them to keep them safe. If (when) their system is breached, and your account details stolen, do you think the banks are going to reimburse you?