I have a feeling Checkfree was far more rigorous about security before they were bought by Fiserv last year.  (http://seekingalpha.com/article/43376-fiserv-to-acquire-checkfree-for-4-4-billion)  The current hijacking of their domain seems to support that.  (http://voices.washingtonpost.c.....l.html?hpid=sec-tech).  For a time checkfree.com was actually pointing to some malware site in the Ukraine set up to steal passwords and other personal information.
I am kind of glad our Canadian Checkfree office closed three years ago before the company really started sinking.