The Toll-Phree Phish
As long as there are phish in the sea of consumers someone will try to get information from them. You've taught your customers to watch out for malicious websites and not to provide confidential data to anyone when they didn't initiate the call. Now there is a toll free scam. While seen in Australia so far, if it works, it will surely be adopted elsewhere.
Chase Bank is the "victim bank" in this case. Their customers receive an email asking them to call a toll-free number. Most financial institutions have a toll-free number so it isn't unusual for customers to make this call. The customer dials in and is greeted by automated instructions requesting information for verification, their 16-digit credit card number, the expiration date, and the last four digits of the owners Social Security Number.
Security and technology departments need to consider this fraud and the ways you may be able to combat it. Being proactive and avoiding a loss is always better than being reactive to a loss.
Chase Bank is the "victim bank" in this case. Their customers receive an email asking them to call a toll-free number. Most financial institutions have a toll-free number so it isn't unusual for customers to make this call. The customer dials in and is greeted by automated instructions requesting information for verification, their 16-digit credit card number, the expiration date, and the last four digits of the owners Social Security Number.
Security and technology departments need to consider this fraud and the ways you may be able to combat it. Being proactive and avoiding a loss is always better than being reactive to a loss.
posted by Andy at
2:26 PM
|
0 comments
