Insecure sign in?

Need Help?

That's what we're here for! The goal of the Rogers Community is to help you find answers on everything Rogers. Can't find what you're looking for? Just ask!
cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
I've Been Around
Posts: 1

Insecure sign in?

I just noticed that the home page you reach when you go to rogers.com -

http://www.rogers.com/web/Rogers.portal

is not a secure page (not https). But it accepts signing in from there.

Is that really secure enough?

Ironically, after you sign in from there you are taken to a secure page.
Then when you sign out and are taken back to the home page, you *do*
wind up on a secure page (https).

Also, if you click on the "Sign In/Register" link at the top of the
insecure home page you are taken to a secure page (https) from which
you can sign in.

My concern about the security of that http page was heightened when I
noticed a small but somewhat peculiar change at the top. In the past
the top line has always read: "Welcome Sign In/Register ..."

Now it reads: "Hey! Sign In/Register ..."

 

 

***edited labels***

Solved! Go to Solution.
I'm a Trusted Contributor
Posts: 667

Re: Insecure sign in?

When I click on that link, the home page is not a secure page, but as soon as I click on the
'sign in/register' it goes to a secure page which is where I sign in with username and password. I cannot actually sign in from the home page.

I have "My Rogers" bookmarked and sign in from there. It is a secure page.

I hadn't noticed, but yes does read "Hey! Sign In"
I'm a Trusted Contributor
Posts: 519

Re: Insecure sign in?

Rogers.com is not secure.  Does anyone know if it is a fake site?

 

Logging in to "Rogers.com" with Google Chrome  or MS Edge is not allowed as it is not a secure site ( https://)

You have to look for and find a link to "Rogers wireless" or "Rogers TV" or something else which is secure that allows you to log in.  

 

 

Not secure- Rogers.png

 

Resident Expert
Resident Expert
Posts: 2,980

Re: Insecure sign in?

I have the following page bookmarked to signin to MyRogers.  It is secure:

 

https://www.rogers.com/web/totes/#/signin

 

I have similar (secure) pages bookmarked for WebMail, etc.



Highlighted
I'm a Trusted Contributor
Posts: 519

Re: Insecure sign in?


@57 wrote:

I have the following page bookmarked to signin to MyRogers.  It is secure:

https://www.rogers.com/web/totes/#/signin

I have similar (secure) pages bookmarked for WebMail, etc.


When I type "Rogers" for a Google search,  I get the choice shown below which doesn't have the "www"

It may be just a glitch as typing "www.rogers.com" doesn't result in the insecure sign-in message. 

On the other hand, I sometimes get "Authentication Failed" so it may be operator error.  I will post the "authentication failed" message for info below.

(Don't forget that the service provider is Rogers, so who knows why this is happening! Smiley Indifferent)

 

Rogers URL.png

 

Authentication Failed.png

Resident Expert
Resident Expert
Posts: 2,980

Re: Insecure sign in?

The Authentication Failed issue is different and is discussed in the following thread:

 

http://communityforums.rogers.com/t5/Community-Questions-Suggestions/Signing-in-to-the-forum/m-p/402...

 

We're waiting to hear why this comes up for us from time to time (more often recently).



I'm a Trusted Contributor
Posts: 519

Re: Insecure sign in?

Here is a report on the security problems when signing in on Wi-Fi networks. It is highly unlikely that Rogers will tell us anything about it. 

 

wifi-security-vulnerable-hacking-us-government-warn

 

The week before it was reported that  iPhone’s habit of repeatedly requesting your Apple ID password with little or no explanation is also a security flaw. Attackers can craft extremely convincing phishing attacks to get people to put in their password without realizing what they are doing.

 

My concern is that Rogers gives little or no information to its clients on such vulnerabilities like banks do.  Does the community forum have a place to discuss or post info on vulnerabilities and security issues?

 

Network Architect
Network Architect
Posts: 611

Re: Insecure sign in?


@User14 wrote:

Here is a report on the security problems when signing in on Wi-Fi networks. It is highly unlikely that Rogers will tell us anything about it. 

 

wifi-security-vulnerable-hacking-us-government-warn

 


@User14, we are well aware of this vulnerability and have posted a banner to that effect on the Rogers homepage. We have also put in place a FAQ.

 

You can also join the discussion in the Rogers Community Forum in this post. I should be updating it with the latest information shortly as soon as I clarify a few additional details.

 

--Dave

 

 

I'm a Trusted Contributor
Posts: 519

Re: Insecure sign in?


@RogersDave wrote:

 You can also join the discussion in the Rogers Community Forum in this post. I should be updating it with the latest information shortly as soon as I clarify a few additional details.

 

--Dave

 

 


Thanks,

I have now read the thread:  New WIFI WPA2 vulnerability -- modem updates coming?

I also missed it in the banner on the Rogers Home Page 

× Learn more about the global “KRACK” Wi-Fi vulnerability and what it means for you.

I hope this can redirect people to the right spots as I found the info hard to find. 

To find out the model of modem, I had to go to my Internet Plan and click on change password for my rented modem.  Not intuitively obvious.  

Now on PPV
BARE KNUCKLE FC 9: LOBOV VS. KNIGHT 2
LIVE: Saturday, November 16, 2019 9PM ET
Channels: 348 (HD) | 350 (SD) | Ignite TV 499
Price: $39.99 (HD) | $39.99 (SD) | Ignite TV $39.99
DTV & Ignite TV customers can order now!

Bare Knuckle Fighting Championship returns with BKFC 9, featuring the rematch of April’s “The Fight of the Year” between former UFC star Artem Lobov and Jason Knight.

Topic Stats
  • 8 replies
  • 1703 views
  • 2 Likes
  • 5 in conversation