mastodon.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
The original server operated by the Mastodon gGmbH non-profit

Administered by:

Server stats:

311K
active users

The bank website kept rejecting "International Card Usage" changes for a week (citing 'anomalous transaction), while my bills were bouncing, and another team kept calling me for every failed transaction asking me to enable the same (which they themselves disabled when renewing the card), and asking me to install their app "because it will definitely work even if the site doesn't".

Smells like someone has targets that need to be met. Sigh.

Harshad Sharma

And they have the balls to limit passwords to 15 characters, demand a change every 90 days and only provide SMS as the MFA, but not to login, only for making outgoing transactions and I'm "anomalous" here eh?

@hiway also likely the app is gathering further data behind the scenes that is used to authenticate you (such as precise GNSS-enabled location, which your computer may not have)

@vfrmedia *nods* it's a ruse to gather more data that they'll make money off of, I am not falling for it. Also, if they really care about security, why is their entire login system so weak?

@vfrmedia last time I checked, they demanded pretty much *all* permissions Android has to offer - and if you reject any, they don't let you use the app - that's far more anomalous behavior than someone wanting to pay bills X-)

@hiway if the banks are anything like those in the UK, the actual banking part is still using the modern equivalent of 1970s mainframes and similar tech behind the scenes with a web-based front end just bolted on to it.. the app dev is likely outsourced to another company which is gathering the data as part of the deal..

@hiway Just by the password policy, if I'm guessing the bank name - it's name starts with the same alphabet as your name?

Am I right?