Just had a phone call from plusnet asking if I was happy with my broadband. Nothing strange in that except they wanted me to tell them my phone number, user name, address and postcode, plus the first 2 characters of my password. REALLY? It was a genuine plusnet agent - she emailed to confirm she was, but who in their right mind is going to give out even a few characters of their password?
To my knowledge, every site that offers security and anti fraud advice says never to reveal passwords. I did question this on the plusnet facebook page, but got a generic "we have to follow data protection rules" answer