I was tricked by a phone-phisher pretending to be from my bank, and he convinced me to hand over my credit-card number, then did $8,000+ worth of fraud with it before I figured out what happened.
I was tricked by a phone-phisher pretending to be from my bank, and he convinced me to hand over my credit-card number, then did $8,000+ worth of fraud with it before I figured out what happened.
The real answer here is to have decent digital ID as 2-factor authentication.
This scam would be practically impossible in Sweden with BankID for example.
Another thing is that I feel like the era of the private phone number has passed. I see the use case for phone numbers for businesses, but people just don’t use them very much anymore otherwise.
Like, we don’t memorize them. We don’t dial them. They’re just entries in our contacts.
At this point, we could create an alternative way of contacting private phones. Something based on whitelisting instead of blacklisting. Something that can be easily shared but not easily guessed. Something that would be easy to trace who called you.
All of these phone scams rely on the idea that a stranger can just up and contact you without any effort. It’s ridiculous. If we got rid of that, we’d save people from untold billions of dollars of scams almost instantly.
Yeah, my ex was scammed this way too - exactly like Cory describes, they happened to ring right as she was going through the whole visa and tax process and pretend to be regarding the IRS, etc. and since she was dealing with a lot of similar calls it was an easy mistake to make.
More services available online and e-mail communication makes this a bit better.
PSTN is easy for surveillance to be just replaced with a modern system.
It is also relied on by business models of many things, like WhatsApp and Telegram and what not.
The something you are talking about seems suspiciously similar to the Internet with cryptographic IDs.
He gave them his CC number over the phone. How would Sweden’s BankID protect against that?
More that you’d never need to provide it, but many transactions will also require 2FA, even by the credit card.