Ask HN: Websites emailing passwords in plain text – anything to do?

6 points by maximente ↗ HN
per title, i've had two websites this week send forgotten passwords in plain text over email which would imply it's stored as plain text.

is there anything positive one can do here?

4 comments

[ 4.0 ms ] story [ 27.5 ms ] thread
I'd avoid those sites and ensure passwords are unique (using something like 1Password). If you want, you could also send the maintainers a few links on best practice.
Reset password. Hope they don’t mail the password again