Fuck your clients, right...? A small town bank I’m doing some security work for; I had them create me a test account. I received an email with my password; are you fucking serious...?

I hope they also log usernames and passwords in cleartext for every login (attempt).
Maybe they sent you the email before the password was hashed and stored...
*security intensifies*

You had them create you an account...

What did you expect them to do? Whisper the password? Write it on a post-it note and hand it to you? By pigeon? By super duper encrypted Linux sftp share?

Jeez, sure companies can be bad at security, but if it's not a real account, and they have to manually make it, you can't expect anything different except if you gave them instructions.

@FMashiro I was sitting in the room next to them, I’m sorry but if there’s a fucking account created in the same building for your employees and clients WHY email shit in plain text? I sure as fuck don’t expect any bank or financing company to ever send me my credentials in plain text.