A couple of days ago, we reported that T-Mobile Austria allows its service agents to partially view customer passwords and stores credentials in plain text in the database as well. Apparently, the reason for not storing passwords securely was that the firm"s security is "amazingly good". Given the security threat this situation poses, there was naturally a public outcry regarding the matter.
However, T-Mobile Austria customers will be somewhat relieved to know that the company is backtracking on its decision and will now be taking steps to secure customer passwords in a safer way.
In its most recent tweet, T-Mobile Austria has announced that passwords will now be hashed and salted, and will not be visible to customer service agents:
As we previously said we will implement further steps to secure passwords. Passwords will be salted and hashed, service agents will not be ablt to see any parts of passwords. We will implement this as quickly as possible.
— T-Mobile Austria (@tmobileat) April 9, 2018