You receive a call on your phone.The caller says they're from your bank and they're calling about a suspected fraud.
-
@Edent There's only two ways I'll accept a notification from a business. If I'm in the room with them, like at my wireless company, or if I'm on a website trying to make a purchase. No one in the middle. Most places won't call you. And if they do, take a message, go to their business or call them at a number you know os legit.
-
@Edent hang up the phone and contact your bank directly…
-
@Edent this is wrong and bank must be responsible for any losses. they clearly failed to identify customer The app can say: if it’s you, call us again number+3 digits from app+3 digits from the call. Bank Identity is established by a well-known number, the additional digits demonstrate that the same person is using the app and talking on the phone. May still be problematic if the attacker managed to login to the app. Better idea: just verify ID through a video call in the app.
-
@Edent the scam would probably not work if the messaging on the phone app was better
"did you initate a call with us from number +1 555 123123 five minutes ago", for instance, would work much better
-
Frederic Barthelemyreplied to Terence Eden on last edited by
-
@Edent @briankrebs Damn, that’s a slick one.
I never answer calls from unknown numbers personally. I’d rather go through the hassle of missing the call and then trying to get ahold of whoever called me. That being said, my banks are smaller and I usually just go into a building when I get a letter or bill that looks weird. -
@Edent The timing is amazing. The fraudsters are good at what they do. The whole reddit thread is worth a read.
-
@Edent Banks should never initiate a phone call to a customer. If a bank declares that policy, customers will know any unexpected call claiming to be from the bank is bogus.
-
@Edent Anyone saying they’d immediately identify this as a scam is delusional or a perfect mark in the future...
-
@Edent I would always hang up and call the bank/credit card company number on my card. The real bank has no problem with that, but scammers would be upset.
-
@Edent Another reason to ignore calls from people who aren't in my contact list.
-
Maria Langer | 📝 🎬 ⚒️🛥️replied to Terence Eden on last edited by
You know, it’s hard to get scammed by phone if your phone doesn’t even ring for callers not in your address book.
-
PhDog 🇮🇪replied to Terence Eden on last edited by [email protected]
@Edent
A two-men-in-the-middle attack. Old-skool but clever. -
Social engineering… common con man practices… now with electronic means…
I had the bank calling me about an account, how can we ever trust this anymore now…
-
@Edent If I received the call, it's a scam, regardless of how convincing. It's pretty much unheard of that anyone ever calls from a bank due to suspected fraud.
-
@Edent I always hang up and call the bank directly. No matter what, you can't trust the contact initiated to you
-
A tactic not too dissimilar to this caught me out. No financial loss though.
My only excuse was a super high temperature at the time and I was anticipating a call.
Right circumstances. That's all it takes 🫤️
-
@simonzerafa
Yup. You have to be lucky every time; scammers only need to be lucky once. -
Harro van der Klauwreplied to Terence Eden on last edited by
@Edent yeah, I would never do that over the phone, I'll tell them I'll hop on my bike to the local bank first thing.
-
@Edent I think I might have had pause for thought at “12 digits of your card number” but then I’ve watched/listening to a *lot* of scam baiting videos and adjacent podcasts. I simply do not answer phone calls.
I also don’t have any money to steal