Recently I've started looking around for a good VPN service that takes privacy seriously. From what I've been able to scrape together from these forums and elsewhere on the net, BolehVPN is an excellent service, and many threads here on Wilders speak highly of them. I had decided that I'd give them a shot and set up a login (before paying or activating any VPN service), and I was positively shocked when I went to the profile information page to see my account password presented to me! This means they store all of their credentials in cleartext! This is security no-no number ONE, and I was baffled that a service supposedly established for privacy and security would make such a blunder. My password, username, and account number were additionally sent to me in cleartext via email. Am I missing something? I feel like Wilders wouldn't give BolehVPN the praise it has if it were an disreputable service, but storing passwords in cleartext makes me feel extremely uncomfortable about actually giving them money. Is this not as big a deal as I think it is?