I’ve read a lot of negative things about Tiger Direct over the years, but I have never had any problems with them. Until the other day when an e-mail arrived in my in-box that apparently originated from the comapny.
Specifically, the e-mail claimed that Tiger Direct had changed its security system which necessitated resetting the password associated with my ID. The password was included in the e-mail which also included a URL to logon to update or change customer information.
After a little investigation the e-mail looked legit and I sent a scathing e-mail to Tiger Direct to the effect that I couldn’t believe they would do this sort of thing.
First, with the prevalence of e-mail scams that make users think they are updating PayPal or E-Bay accounts when they are really giving con men their important information, it seems sensible to never send out this sort of e-mail. In fact if I were a scammer, I’d send out spams targeting Tiger Direct customers and see if I could hook a few unsophisticated users.
Second, sending me a new password to my account in a plaintext e-mail is unbelievably stupid to the nth degree. Gee, why not just post the password on Usenet and send me a link where I can find the password in Groups.Google.Com?
Did I mention that I used to be a Tiger Direct customer?
Loading ...