Money for nothing but the choc’s for free

By Helen G | 16 April 2008, 17:00

This year’s Information Security Awareness week starts on 21st April and to highlight its approach, the organisers of a corresponding IT industry trade show, Infosecurity Europe, have carried out their annual survey and once again found that a lot of people really couldn’t care less about their computer passwords - or, as The Inquirer helpfully puts it, "Women give out passwords for chocolate - Just imagine what they’ll do for jewellery"…

>headdesk<

Office workers outside Liverpool Street Station in London were "asked to give strangers, posing as market researchers, their email password, in return for a chocolate bar". And apparently 45% of the women quizzed were happy to oblige, as opposed to 10% of men.

Once you get past the cliched headlines, and the fact that this seems to have been more of a straw poll than any particular piece of scientific research, there is actually a serious underlying point - although it applies regardless of gender - which is that giving away personal information to strangers who look respectable, regardless of what it’s in exchange for, leaves one exposed to the risk of identity theft.

But I’ll tell you this for nothing: I’d want a huge bar of really good quality chocolate for my password. About the size of the Isle of Wight, I reckon…

Your Comments

Mary said:

But surely any clear thinking person would just give a false password and nab the chocolate! Not a very conclusive bit of research...

Posted on 16 April 2008 at 5:11 PM

Jess said:

So. annoying! Why do people even do this 'research'?!

Posted on 16 April 2008 at 6:07 PM

Anne Onne said:

Heh. People DO find it harder to say no to anybody with an air of authority, but giving out passwords to random researchers? I can't quite believe it.

I'm trying to work out whether I'd be dishonest enough to five a fake password to nab free chocolate. Nah, I'm not that into freebies given away on the street (too paranoid, I guess), and I would be VERY suspicious of anybody asking for passwords.

Besides, since it doesn't look like they checked if the passwords are genuine, can they really draw ANY conclusions from this?

Yeah, educating people about internet safety is very important, but this research is pretty useless.

Posted on 16 April 2008 at 7:36 PM

Helen G said:

I agree that the methodology leaves much to be desired, but the point is valid. People generally are far too relaxed about giving out this kind of information.

The web came into being as a way of sharing information, and implementing and maintaining data security is hard enough for any organisation without users handing out passwords to random strangers on the street.

I wonder how many of those interviewed would have told the interviewer the PIN of their credit/debit cards...

/soapbox

Posted on 16 April 2008 at 7:45 PM

Cruella said:

Did anyone bother to check whether the women gave their ACTUAL passwords. I know would instantly go "Oh sure, it's Tuesday24 thanks very much" and head along eating choccie. I suspect very few gave their actual password.

Posted on 16 April 2008 at 8:02 PM

painless said:

question: if the people who gave their password didn't also give out their email address - or information that could lead the questioner to their email address - (which might be quite hard if it's not theirname@whatever.com) then maybe the people who shared were thinking, well, what will they do with it?

Posted on 16 April 2008 at 9:33 PM

betsy said:

I probably would be dishonest enough to make up a password to get chocolate, especially since (in such a situation) my mind immediately thinks "they're trying to steal my emails, and my paypal, and my ebay, and get onto my FACEBOOK".

Somehow the facebook thing is the most worrying...

Posted on 16 April 2008 at 9:46 PM

Helen G said:

The Register adds that "[the] researchers also asked for workers' names and telephone numbers, ostensibly so they could be entered into a draw to go to Paris". Dates of birth were also requested.

In my view, it is not so much a question of the researchers scurrying off to the nearest Starbucks, laptops and password lists in hand, to try and hack somebody's Gmail account; it is about pointing out how much personal information people will give away without thinking - information which could be potentially very useful indeed to anyone planning ID fraud.

Bearing in mind the amount of data lost by various government departments on laptops and CDs, etc - and the amount of personal information posted on social networking sites like FaceBook, one might have hoped that people would be a little more circumspect - but maybe it was just really nice chocolate on offer...

Posted on April 16, 2008 9:50 PM

Helen G said:

So you wouldn't trust them with your password - but you would trust them not to have tampered with the chocolate?

Yeah, I know, I'm completely paranoid...

Posted on April 16, 2008 9:55 PM

Lindsey said:

I would totally fake it for freebies!

Which sounds awful out of context. But many years of freshers fairs with clubs asking for email addresses in exchange for goody bags and me going 'yes and I'll just add my five friends too' and making up a load seems to have trained me into this habit.

Posted on 17 April 2008 at 8:59 AM

Catherine Redfern said:

Just had to say that this post has the greatest title ever.

Posted on 17 April 2008 at 12:10 PM

Samara Ginsberg said:

A few years ago a marketing guy with a clipboard offered me a free packet of Maltesers in return for my mobile number. I gave him a fake number and bagged the chocolate. It was particularly delicious for having been obtained by devious means.

Posted on April 17, 2008 2:08 PM

Cara said:

I would definitely have made up the password. And any other details - name, phone number, date of birth - any or all of those could be made up.
I got one of those coupons in a magazine for a discount on shoes...filled it in with fake e-mail address as I didn't want constant spam...no problem, 20% off shoes. Yay. (Not that I am obsessed with shoes or anything).

Posted on 17 April 2008 at 5:52 PM

Cruella said:

I have been advised when the marketers come round your local pub/club handing out free cigarettes - in return for a signature confirming you are a smoker aged over 18 - don't sign these with your real name.

I heard from suitably paranoid sources that often people who don't smoke sign up thinking they'll get free ciggies and give them to their smoker friends, but that then the lists are sold on to health insurance companies who increase your premiums because they think you smoke...?!

Maybe just paranoia. But I'm paranoid enough to put a false name and signature.

Posted on 17 April 2008 at 5:57 PM

Feminist Avatar said:

Having spent the last eight years on a uni campus where giveaways for email addresses are de rigeur, I quite happily create my 'personal details' for each promo.

Posted on 19 April 2008 at 7:12 PM

top ^

Latest Posts
UK survey: 1 In 7 women students have been subjected to sexual assault or violence
Are you a Bad Girl? Mama Says Good Girls Marry Doctors
Women's Liberation Movement @ 40 - Reflections
What is feminism? First survey results
New feature: In conversation with Senzeni Marasela
New review: Daughters of Earth: Feminist Science Fiction in the Twentieth Century
Round-up!
What About Women?
New feature: Writing women back into punk
New feature: Painful vagina? Your poor husband!
More posts
Latest Comments
sianmarie on UK survey: 1 In 7 women students have been subjected to sexual assault or violence
andieberry on Women's Liberation Movement @ 40 - Reflections
Troon on UK survey: 1 In 7 women students have been subjected to sexual assault or violence
C on UK survey: 1 In 7 women students have been subjected to sexual assault or violence
Jeff on UK survey: 1 In 7 women students have been subjected to sexual assault or violence
Colin on UK survey: 1 In 7 women students have been subjected to sexual assault or violence
Louise on UK survey: 1 In 7 women students have been subjected to sexual assault or violence
Lindsay on UK survey: 1 In 7 women students have been subjected to sexual assault or violence
Troon on UK survey: 1 In 7 women students have been subjected to sexual assault or violence
Maeve on UK survey: 1 In 7 women students have been subjected to sexual assault or violence
More feminist bloggers
There are plenty of fantastic UK feminist bloggers around. For a fantastic introduction to feminist blogging, go to the Carnival of Feminists website, which showcases the finest feminist posts from around the blogsphere, including many from UK blogs.
How to contribute to The F-Word
Got something to say? Something to review? News to discuss? Well we want to hear from you! Click here for more info
Events
Check out our events listings for info on some of the fantastic feminist events going on up and down the country. Please get in touch to tell us about events we've not listed yet.
Small Print
All blog posts are the views of the individual post author, and not those of The F-Word.

Inside this section

Blog Home
Archives by Month
March 2010
February 2010
January 2010
December 2009
November 2009
October 2009
September 2009
August 2009
July 2009
More Archives
Archives by Author
Abby O'Reilly
Amy Clare
Anne Onne
Barbara Felix
Bill Savage
Carrie Dunn
Catherine Redfern
Grace Fletcher-Hackwood
Guest Blogger
Helen G
Holly Combe
Jess McCabe
Joanna Whitehead
Jolene Tan
Josephine Tsui
Kate Smurthwaite
Kit Roskelly
Laura Woodhouse
Lola Adesioye
Louise Livesey
Lynne Miles
Milly Shaw
Philippa Willitts
Samara Ginsberg
Sokari Ekine
Sunny Hundal
Suzi FemAcadem
Syma Tariq
Yvonne Howard
zohra moosa
News prior to April 2005
XML feed Feeds
Latest Blog Posts
Latest Comments

Contact Us

This webpage lives at: http://www.thefword.org.uk/blog/2008/04/money_for_nothi