I was tricked by a phone-phisher pretending to be from my bank, and he convinced me to hand over my credit-card number, then did $8,000+ worth of fraud with it before I figured out what happened.
You must log in or register to comment.
When a fraud department calls you, you don’t need to provide any more information than your name and yes/no answers. If they are asking for any additional information, tell them that you don’t trust their authenticity and that you’ll call the number on the credit card. A legitimate agent will politely end the conversation there.
Then you better call that number on the card quickly.
This is the solution.
Had this happen once, followed those steps, and the CSR was very interested in getting the details of the call. They put a freeze on that account for a bit as well. Nothing was taken.
They should already have your name too if they’re calling you
My rule of thumb is to never give away any information, always call back. And I don’t have credit cards, never have, whenever I need I just use virtual disposable CCs from my banking system.
Never, ever, ever, ever volunteer personal information, for any reason, on a call you did not initiate, with a number you haven’t verified from a trusted source, like a brick and mortar branch, or your online banking account.
He said someone in the bank’s supply chain was compromised, as they knew a lot of details that should have been known only to the bank. Also that the only information he gave away were the last digits of a card number.
No, he gave away the last seven.
When a possible fraud department calls you, you shouldn’t need to verify any digits of the card. Answer only yes or no.
Call them back if you need to give additional information.
I’ve never had a legitimate contact from a fraud department that wasn’t an automated message stating to call the number on the card. I’ve never had a human call me to initiate a live discussion.
Right? This is the bare bones basic right here.
Hold on the scammer could spend 8000 usd without even knowing the card’s PIN number?
The real answer here is to have decent digital ID as 2-factor authentication.
This scam would be practically impossible in Sweden with BankID for example.
He gave them his CC number over the phone. How would Sweden’s BankID protect against that?
More that you’d never need to provide it, but many transactions will also require 2FA, even by the credit card.
Lol an entire article about someone giving away info that should never be given away.
Call your bank back if they start requesting info. shakes head
deleted by creator
I know I can’t get scammed. This isn’t an idle claim, but seeing as it is impossible to prove, we can just leave it at that
