A recent study shows that many password-limiting features such as case-sensitivity may not be fully implemented in US Banks’ systems. Of the banks tested, 11 passed the case sensitivity test while six failed. This means that the password being type often times isn’t what is being used by the banks, leading to a lower standard of security. Read more at Naked Security by Sophos.
Home Passwords May Not Be As They Appear for Customers of US Banks