When a cybersecurity researcher was trying to reset his Virgin Media password earlier this year, he found that Virgin sent his password in plain text via email — a startlingly unsecure way to communicate passwords without encryption. After he notified Virgin of the vulnerability on Twitter, Virgin's official Twitter account responded with a Tweet that seemed to brush off the complaint:
"Yes, because criminals don't break laws, right?" Matthew Hughes quipped in The Next Web. "By that logic, why should I lock my front door? After all, burglary is illegal."
Posting it to you is secure, as it's illegal to open someone else's mail. ^JGS
— Virgin Media (@virginmedia)
August 17, 2019