Like most people who shop on the Internet, I would never buy anything from a website without a secure (SSL) connection. The Internet being an inherently insecure means of communication and all, it seems only prudent to encrypt personal information like your bank or credit card details when sending them out into the network. There’s lots of nasty people out there, and they’ll happily take your information if you’re dumb enough to offer it up to them.
It is with some concern that I discovered this week that after signing up for an account with Virgin.net so that they provide broadband to my flat, they think nothing of “reconfirming my bank details” for my direct debit by email. Email! That’s plain text email, with no PGP encryption or anything, just an unencrypted message that anyone who cares to sniff can have a good long look at. With my bank details in it!
I have already complained to them, but they have so far been unhelpful. It is standard procedure, apparently: “When setting up an online Auddis Direct Debit, it is standard procedure to confirm the details via e-mail.”
Well I don’t care: it shouldn’t be! I feel sufficiently annoyed about this that I want to take it further, but I don’t know how: anyone out there have any idea who I should be complaining to?
5 replies on “Surrounded by fools (2): Virgin.net are giving out my bank details if anyone’s interested”
Lawyers, of course.
Customer Services Manager at Virgin.net Head office are Chris Asimoah or Steven Adejoh – 020 7664 6000.
googlebomb them as follows: stupid-ass motherfuckers
I’ve actually just spoken to a chap at customer services who is insisting it is standard procedure imposed on them by Auddis, the people who regulate direct debits, and there is nothing they can do. I give up.
Mr. Head, meet Mr. Brick Wall.
Oh, and I’m not the first person to worry about this: http://cert.uni-stuttgart.de/archive/isn/2003/06/msg00108.html