Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

The passcode to call your bank for basic customer service probably shouldn’t be the same passcode that lets people spend money on your account. Even TOTP is better than this.


Why not?

Basic customer service lets you do things like transfer money too, so you need something just as secure as a PIN.

So why would you want two different security mechanisms? Either it's you or it's not.


In the UK customer service absolutely cannot transfer money

The banking system is so backwards in the US it's actually insane, you've just got used to it




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: