Better n'th character and m'th character handling. It's bad having to show pwd in big text.

@Chippy_boy I work in a banking environment, and at the same time being a bank customer myself, I have an idea why banks invent all these "interesting" but actually pointless security measures.

The really important private bank customers - the ones with the money - are old, and are not computer proficient. They abhore changes. They only understand very simple and straightforward things if it comes to IT. They just want login and do their stuff. To keep these people, banks need to create security measures these people are able to understand and use. Typing some partial password letters, or reading a number from a text message is something they are able to do. Using some password manager with a 20 character random password on every account isn't something they are able to do - it's too big a barrier to get into this.
Using mobile phones and authentication apps - a barrier.
Using mfa authentication - a barrier.
Not only a barrier for hackers, but also a barrier for computer illiterate older customers. They rather change to a bank with less security frontend than adopt state of the art authentication measures. It's also some kind of vendor lock-in the other way round: once they got used to one scheme, customers don't change to other banks with different (no matter more cumbersome or less cumbersome) authentication schemes.