VM's passwords can never be good in LP's eyes as they cannot use special characters only letters and numbers, it would need at least 1 special like "£" or "^" to be 100% which can be 100% in less than 10 characters.
I have the full version of LP and can do the same inside it that that link can do.
It will always be low scoring in the security test.
Many thanks for joining us on the community and for raising your concerns with us about this.
We are constantly reviewing our processes and take our customers data security very seriously.
Ensuring customer data is secure is of utmost importance to us and we continually invest in our security systems to keep our customers safe online.
In common with every other company, our login process requires customers to use unique passwords using a variety of characters. Additional technical controls and anti-fraud measures defend against unauthorised login attempts.
Our engineers regularly review our systems and carry out updates – and account security is always a top priority.
Thanks Karen I've replied to your private message and I appreciate you filing an official complaint.
I'm under no illusion that it would be an easy change for Virgin Media to enable longer and more complex passwords on their systems. I've worked on what I imagine would be a similar sized system (~2M active users) at the sharp end of making security improvement changes to stored salted and hashed passwords on existing user accounts. Definitely tricky but certainly not impossible and it just requires the will of those in charge to consider it important enough to bump it up the priority stack to make it happen.
As it stands, 10 chars (whilst not ideal) is secure enough for most purposes, if chosen correctly. Unfortunately, there's far more to it than simply hashing & salting... it's not hashed at all right now.
I've lost count how often this topic has arisen... typically followed by some inane drivel about rainbow tables, brute force attacks and how Virgin are completely insecure. It's just nonsense.
If security is of paramount importance to you, don't use Virgin's email services as your primary account. Ensure your password is strong (ie - don't follow Virgin's own advice) and entirely unique and forget about it.