Account Privacy -> Account Detail page requires revamp

Recently, I ran a manual scan on my device and got an Account Privacy alert. When I opened up the Account Detail page for the affected account, it was absolutely useless, simply stating my account was compromised and that I need to mark the compromise as resolved.

If you show me literally NOTHING about the exposure, how can I confidently mark the exposure resolved? You tell me to change my password, but if my password wasn’t compromised since my password was last change, then I really don’t need to change my password.

Imagine a scenario where someone knocks on your front door and upon answering it, they tell you, “Hey, just fri, I have a key to your house.” You’d be startled and start asking question; How did you get a key? When did you get a key? How long have you had a key? What key do you have, can I see it? Which door is the key to?
If the person simple doesn’t provide any further information, how much credit do you give to this person? Would this really justify the cost of going out and buying new locks for your house? Can you be confident the key that have is to the current lock, or is it the key to a past lock that has since been changed?

Getting to the point of my post, it would be really helpful if, before you notified me of a breach, you would at least tell me when and where the breach occurred so I can take appropriate action as necessary based on when the breach occurred. For example, if my password tied to the email is compromised on Facebook, changing my email password doesn’t actually resolve the breach, just prompts for an unnecessary password change. Additionally, when a breach does occur, a subsequent “Breach Detail” page would be helpful indicating where the breach occurred, what site the breach occurred on, what additional data was leaked in the breach (if any). At the current time, I believe the Account Detail page is utterly useless and only serve to incite unnecessary panic within the individuals who utilize this service.

Tagged: