Joanne (IP .229)

Joanne believes in "click to get rich", and to this end she is signed up with greasypalm.co.uk where she has already earned over £ 50 (by spending hundreds)! This amazing website has your banking details, but does not use secure http for anything.

Here's her account overview:

They also very kindly provide a "click history" going back quite a long while. Just the sort of thing you want your nosey neighbour to have a look at :-)

Some thoughts about security. There's not a lot of harm in the banking details hanging around I suppose -- these are the non-sensitive portions at the end of the day (account number, sort code), and you (well at least I do) regularly give these out to all sorts of people. But the fact that the site's password is transmitted in cleartext does mean that I (and anyone else snooping here) could easily change the details for my own, and receive the remainder of her payments. And do you really want some weird website to have your click history?

Oh well, it takes all sorts, I suppose.