A study of 17 major banks by the University of New Haven Cyber Forensic Research and Education Group (UNHcFREG) shows that six of them have weak password handling and that their password procedures are weaker than most social websites.
The six banks, 35 percent of the test group, appear to have a significant weakness in their password policy: ignoring case sensitivity, the UNH study showed.