I received an e-mail today from GO Transit with a subject of "Rail Safety Week Contest". I went to the link and answered the three questions, went down the page an found they were requesting my name, address, e-mail address home and work phone numbers.
All from an insecure website.
http://enews-gotransit.com/nomarketing.aspx
Instead of:
https://enews-gotransit.com/nomarketing.aspx
The change is an 's' after http. The https does not connect.
I went to their comment site and described the problem (text below). Again not a secure site but if I didn't want a response, don't provide a name and e-mail address which was required anyway. I called the support number and after two hops described my issue and gave my real name and phone number.
Below is the confirmation I received with the fictitious full name and e-mail address.
Website comment confirmation
Your information is well received. Thank you for your information to help you make our site better.
Full Name ................. I called the number below an commented
Email ........................ bad.security@gotransit.com
Response Required .... N
Customer Comment
This website should be protected via ssl i.e. https not http. You are asking for personal information that I do not want accessible by anyone who can see this traffic. I am not asking for a response since this site is also not secure and you again want personal information.
Return to home page
Good Night Quito
-
Well, tonight is our last night in Quito. Tomorrow we head homne via Lima
Peru and San Salvador, El Salvador, hopig to arrive around 10;30PM
We had a great...
16 years ago
3 comments:
The phone number I called was 416 869-3600. This appears to be GO Transit's generic number.
Too funny! Or sad :-(
I guess we only pay them enough to do a bad job. Maybe with the next fare increase we'll get something approaching mediocrity... one can dream...
New go contest, now https secured.
Well done GO.
Grant
Post a Comment