Originally Posted by
raehl311
Why? This is worse!
A 4-digit pin has 10,000 possibilities.
Two 25 potential answer security questions have 625 possibilities.
They've made it 94% *LESS* secure!
It appears that if you know the MP number and the first and last name, it's even easier. When trying to reset your password, they've reduced the number of options to 10 per question, so with two questions, there are only 100 possibilities.
But, my answer is always listed twice for the first question, so if that's consistent, it could be as little as 1 in 10 to get into someone's account -- and reduced with multiple attempts.
This is such a major fail -- there must be a complete lack of common sense as well as proficiency in the IT group.