Hi All
Just became aware that my Commsec account now allows direct access to not just my linked bank account but all my bank accounts.
My issue is that my accountant has access to my Commmsec client ID as this was always been save due to the secondary password on the trading access, but now I find that my accountant can actually get directly into the bank accounts and spend as much as he likes.
I had never tried to select the link to one of the bank accounts in the Portfolio window. When I did today this threw me directly into my Com bank view for that bank account with no intermediate password. From here I was then able to access all my bank accounts as I pleased.
Yet when I want to trade shares they request a secondary password so that anyone having access to the normal commsec client ID can't actually do anything except look at the portfolio.
Why on earth wouldn't there be a check for a secondary password before allowing access to my Comm Bank account?
Phoned Commsec who basically said bad luck that the way it is. Further I should change your password on Commsec and then request further restricted access to allow secondary access for the accountant.
Just not good enough as I feel that they have provided a backdoor into my bank accounts.
Your thoughts?
Cheers
Just became aware that my Commsec account now allows direct access to not just my linked bank account but all my bank accounts.
My issue is that my accountant has access to my Commmsec client ID as this was always been save due to the secondary password on the trading access, but now I find that my accountant can actually get directly into the bank accounts and spend as much as he likes.
I had never tried to select the link to one of the bank accounts in the Portfolio window. When I did today this threw me directly into my Com bank view for that bank account with no intermediate password. From here I was then able to access all my bank accounts as I pleased.
Yet when I want to trade shares they request a secondary password so that anyone having access to the normal commsec client ID can't actually do anything except look at the portfolio.
Why on earth wouldn't there be a check for a secondary password before allowing access to my Comm Bank account?
Phoned Commsec who basically said bad luck that the way it is. Further I should change your password on Commsec and then request further restricted access to allow secondary access for the accountant.
Just not good enough as I feel that they have provided a backdoor into my bank accounts.
Your thoughts?
Cheers