You receive a call on your phone.The caller says they're from your bank and they're calling about a suspected fraud.
-
You know, itโs hard to get scammed by phone if your phone doesnโt even ring for callers not in your address book.
-
@Edent
A two-men-in-the-middle attack. Old-skool but clever. -
A tactic not too dissimilar to this caught me out. No financial loss though.
My only excuse was a super high temperature at the time and I was anticipating a call.
Right circumstances. That's all it takes ๐ซค
โ
๏ธ
-
@simonzerafa
Yup. You have to be lucky every time; scammers only need to be lucky once. -
@Edent yeah, I would never do that over the phone, I'll tell them I'll hop on my bike to the local bank first thing.
-
@Edent I think I might have had pause for thought at โ12 digits of your card numberโ but then Iโve watched/listening to a *lot* of scam baiting videos and adjacent podcasts. I simply do not answer phone calls.
I also donโt have any money to steal
-
@gadgetoid
Come on man! Get more money - those scammers have families to feed! -
@Edent Rule two of answering the phone (or emails, texts). The person making the call has to identify themselves, not the recipient. Rule one is that all businesses calling, mailing or texting you are after your money in some way and are likely to con or defraud you.
When my bank has called me in the past and I insisted on checking. Their procedure was to alternate characters of my password with me. Otherwise I refuse to go on, which pisses off shedloads of telemarketers. But keeps me safe
-
@DziadekMick
They did prove who they are. They sent a legitimate notification through the official app.
That's enough to catch most people. -
@Edent The phone is a very poor way for authentication. It's not an issue of wording or implementation. The mobile phone will always be very poor method of authentication, just because there will be always 1000 ways to fake things on it. The problem is, banks push mobile phone for authentication because it is cheap for them.
-
@stamberry but this isn't a fake thing. It is a legitimate alert, from the authentic bank app.
-
@[email protected] Another good reason to say no to proprietary banking apps. My bank account can only be accessed using a physical non-internet connected 2FA key device.
-
@SuperDicq my banking app also supports a physical 2FA token. So what?