Block Widget Displaying Balance

And there is still no apology or remorse from the OP :wink:

Well I’ve learned something new from reading this – Guided Access!

I learned that, as a group, we still confuse security and privacy.

8 Likes

The question I always have for people who raise ‘security’ issues that are actually privacy issues is; “if you hand me your unlocked phone, can I access your email?”

It’s all very well having your windows made out of the toughest frames, with the strongest glass and a multi-point locking system, but if you’re going to leave the front door open anyway


3 Likes

No it requires touch ID

1 Like

The Santander app widget shows the current account balance without authorisation.

You need to activate the Santander feature in the app first. That was the OP’s whole point about Monzo.

3 Likes

Is this a good or bad time to resurrect my war on toggles?

Go for it, although this one has more merit than most.

It doesn’t worry me but I can see the need for a control mechanism for this within the app rather than outside it. Purely because it’s an external feature, hiding the enabler behind whatever app security the user chooses to use makes some sense.

So for this privacy feature I’d allow a toggle.

2 Likes

just as a note


I raised this through chat who after being passed around 5 different specialists have confirmed it’s a bug

4 Likes

:thinking: the funny thing is it’s likely not a bug because of working exactly as intended at the time. I would say they probably forgot it existed from working on other things for the last few years. It may be on a todo list somewhere of features that need improving, or if it wasn’t hopefully is now.

2 Likes

Yeah, a bug is something that doesn’t work as designed. This looks like it works exactly as it was designed to. The question here is whether the design is appropriate, not whether the code is flawed in some way.

4 Likes

Probably less damaging to go :bug: :man_shrugging: these days, rather than “in hindsight it should have probably been auth from inside the app but we did it quickly and thought it was cool at the time. You’re probably one in 4 million customers that knows it does that, even the devs that wrote the code forgot it did that.”

:rage: Customer: I’ve just tapped on x and it’s wiped out my entire balance!!

:man_shrugging: Customer support: I think it’s a :bug:

:bearded_person: Customer: oh that’s fine then.

Yh, i did say I thought it was an oversight rather than bug, but at least they’re aware I guess

1 Like

Why is my niece playing on your phone?! That’s my big question


But in seriousness, I agree with the concept of “this info should be toggleable”. I was surprised to see I could see the info on my widget screen, when my phone is locked. It looks like other banks do a good implementation of this too.

Personally I’m not overly worried about the info being accessible - it’s not like it’s actionable info - other than my friends can relentlessly mock me for how perpetually poor I am


1 Like

@BritishLibrary what is your niece going to do when she finds out that info? Carry on playing Angry Birds?

Or was it a reconnaissance mission and you secretly befriended Js38wju3jda in the chance that there might be a situation where your niece could use their phone and you told her to how to access the account balance “pretending to play Angry Birds” for your own personal gain. :thinking: :male_detective:

On a more serious note do people carry large account balances or you know keep it in savings.

Maybe trying to avoid the “You better get me decent presents this year :christmas_tree: uncle Js38wju3jda”.

1 Like

This topic was automatically closed 180 days after the last reply. New replies are no longer allowed.