Hi John
Thanks for a fast reply.
Like many outside the profession, I imagine many students do re-use their passwords. In addition, if a website has such glaring HTTPS issues, its servers are likely to be poorly configured elsewhere, leaving students email addresses, passwords (maybe name and employer as well?) vulnerable to the types of breaches seen at other websites recently.
Although this will only help with the first point above, could you ask your contact at BPP to provide a warning to students to use a unique password at the BPP sign-in page while BPP finishes securing its portal?
Last edited by a moderator: Jun 14, 2016