andyfuller wrote:Just had an email this morning from another vendor that I used to use that is basically saying that a vendor/befair had a security breach a while back where usernames and passwords were compromised.
Could this have been the cause of all the trouble people had on this thread?
Why does a vendor need to store user passwords within their database? In terms of security, these should be stored locally, on a user's device. A concerning practice, if this is the case.
It does seem probable; although I'm still not convinced that Betfair's security is up to much and could just as easily be the source. To conclude that a third party is at fault, we would need these people to recall every website/application which they've ever logged-in with. Assuming these people are not long gone - any takers?