- From: Close, Tyler J. <tyler.close@hp.com>
- Date: Fri, 16 Mar 2007 21:35:37 -0000
- To: <public-usable-authentication@w3.org>
This is the second forwarded comment from Don Norman. Tyler --- Begin Don Norman's comments ---- I even have a new use case for you: it happened last night. My wife couldn't get on our Citibank site because the password didn't work. So she requested a new password -- which they call an "activation" code. . However, Citibank only has my email address, so (we assume) they sent the new activation number to me. Late last night my wife wondered why I had never forwarded the new code to her. Oops. I explained that I get these all the time -- stored Phishing operation. I always delete them without reading, those few that my Spam and Junk filters let through. And after a quick scan of the Junk and Spam folders, I delete them too. Not by simple deletion (which would put them in the Deleted folder where they could be recovered, but by hard deletion (shift-delete, on outlook), which is permanent. So, we assume, I deleted the legitimate activation code. So, chalk up a nether unintended result of over-zealous fraud detection.
Received on Friday, 16 March 2007 21:47:16 UTC