Why the “Wireless Passcode” AT&T?
It’s been quite awhile since I’ve had to call AT&T but I wanted to ask a question today since my wife is headed to Puerto Rico and was wondering if there was a roaming charge when she was in this unincorporated U.S. territory.
Calling in to customer service surprised me since I asked her, “Does AT&T charge roaming for mobile use in Puerto Rico?” but the rep wouldn’t answer until I gave her my name (since she could see my mobile number) and then the surprise: “What is your wireless access code?”
I had no idea what this was and she explained that we couldn’t do anything over the phone without it, or in-store if I didn’t have a government issued photo ID with me. I WAS JUST NEEDING AN ANSWER TO A SIMPLE QUESTION for God’s sake. But no matter, we were stuck so I hung up and figured “the Google” would satisfy my needs.
Here’s what it says about this passcode at AT&T’s “security” page:
Your wireless passcode is a 4- to 8-digit, non-sequential number that helps to protect your account and personal information. It’s separate from the login password that you use with your AT&T Access ID to manage your account online.
Then I thought about it for a moment: This is NOT something that “helps to protect” my account. In fact, it’s the opposite. Having my own long, high entropy password to secure my account is best and if AT&T offered 2-factor authentication with it even better. Why doesn’t AT&T offer that? Because this access code available means anyone—AT&T, the NSA or law enforcement—only needs to obtain that code to get into my account and 2-factor authentication would be much harder to systematically use. So no thanks.
Yes, AT&T has a long history of opening the door to all of our internet (and voice) use, but if me NOT creating a wireless passcode means vacuum surveillance has one more hoop to jump through to surveil me domestically, so be it.