@Paratron Nah, it's just the widespread believe
about what makes a secure password.

It does not necessarily mean that they are storing passwords in plain text.

Best practice today is min-length without any character limitations plus 2FA.

For a telco, 2FA is basically free via SMS.