Not all attacks are high tech cyber crimes that require a high degree of technical skills. Some attacks can be pulled off with rather unsophisticated means. Here’s an example of such an attack:
You get a letter in the mail from your bank stating that for security reasons you need to use this new complex pin code that is impossible to remember. It also gives you a 1-800 number to call to change your pin if you desire. After calling the number, an automated voice tells you to enter your account number followed by the pound key. Then, it asks for your pin code followed by the pound key. After entering your pin, it tells you the pin is incorrect and to reenter your pin. You again enter the pin correctly but the automated voice says it is incorrect and to stay on the line for an operator. Shortly thereafter, an operator answers and states the bank’s name and his name and asks how he can help. You explain the situation which the operator says he can solve once he verifies your identity. He asks for your phone number, the last 4 of your social, your mother’s maiden name and any other information they need. Since you called them, there is little chance you even realize you are being compromised.
Lessons to be taken away from this scam.
- Verify any number you call with a legitimate source (website, prior bill, back of credit card) Don’t trust, Verify!
- Get to know a bank employee at a local branch and call them with any questions you may have
- Be careful with your personal information at all times
No comments:
Post a Comment