Forgot password – No account registered – Securiry breach?
When using the “Forgot password?” option from any portal, generally it should acknowledge if the email entered was registered in the application. People claim that this allows for a hacker to verify a whether an email address is valid or not.
What could be the solution? How do a person know if he types wrong mail.
3 comments
[ 3.2 ms ] story [ 13.8 ms ] thread