I just fell for an AA breakdown phishing scam

[FellforPhish]

I'm amazed at how clever it was and at the same time feel so stupid that I fell for it.

I've had a letter through the post and emails all looking genuine. They had my name, address, email address, membership number, length of membership and renewal date. Long story short I've now given them my telephone number and linked it to all the details they already had via WhatsApp (again, a verified AA.com account).

I just feel so stupid, like one of those women you hear on the radio saying how they feel so stupid for falling for it(!).

Any advice or similar stories welcome.

https://www.theaa.com/apps

Need help? Browse our help topics or message us on WhatsApp

I think you have a genuine correspondence as I’ve had similar when renewing mine. How well written was the letter as this generally a big give away if it’s badly written. But it is always better to err on the side of caution which is what you have done.

If it was a phishing scam, do not feel stupid. They can be incredibly clever and professional looking. I know many highly intelligent people who have fallen for scams in recents years.
Chalkbit up to experience and vow to learn from this experience and then move on. Be kind to yourself

Seems like a huge fuss about nothing! Waking up in the early worrying about it???

Sounds to me like it was genuine and you just spoke to to clueless call centre agent.

Sounds like you've done all the right things, and they don't yet have enough to get money from you.

As your bank said, be on the alert for phone calls in the next few months. It's surprising how automically we switch into 'helpful' mode when interacting with an actual person on the phone, so try really hard to keep this in your mind!

Is there any chance they might have done a 'drive-by' install on your phone to change your browser to include a key logger? You would have had to follow a link which did the install, and then accepted a warning message from your phone that the update came from a different place. Some people accept warnings because they don't understand them - but you sound too clued up to have fallen for it.

Uninstall and re-install your browser if you think that might have happened. And always use your banking app rather than website.

I agree with this. Especially as you called breakdown recovery in the end - they might not use WhatsApp but doesn’t mean the normal customer service department doesn’t use it.

Does the AA say you’ve got cover this year? Because surely if you didn’t pay the renewal cost to the genuine AA, you wouldn’t be covered, so you could check that way?

They have done you a favour. Get breakdown quotes and pick a cheaper option, I had a vehicle that was forever breaking down and the cheap options were great! Worst ever service was AA!

Chalkbit up to experience and vow to learn from this experience and then move on. Be kind to yourself Thank you, I needed those words this morning (as you can imagine, there's other stuff going on in my life at the mo which is making me a bit vulnerable).

@strawberrybubblegum I don't think that's happened, thankfully.

I've tried ringing AA since 9am but the lines still aren't open apparently.

Getting her phone number was the aim. People respond very differently to a real person on the phone, so it's worthwhile.

Phishing has become much, much more sophisticated - it exploded during covid, when so many people changed their habits to be more online. Expect everything to be well written, and the person calling you to sound English.

Does the AA say you’ve got cover this year? Because surely if you didn’t pay the renewal cost to the genuine AA, you wouldn’t be covered, so you could check that way?

I actually haven't renewed after 22 years because it's so expensive. I've gone with someone else for less than half the price. I was trying to confirm that there was no auto-renew on my account. Don't seem to have any way of doing this online.

But what information did you actually give them? If they didn't ask you for any codes or private passwords etc or full bank details then I don't see what their purpose is?
The woman you spoke to in breakdown was mistaken about WhatsApp. Is the phone number different to the one on the letter?
If you didn't give them any money I just can't see how you've been scammed.

I’d be very surprised if scammers went to the trouble of sending an actual letter. It sounds like you’re getting worked up about nothing.

Don't panic. They can't get anything unless you fall for the phone call. And you've realised, so you can make sure you don't. Be aware they might call several times, separated by several months. Saying things like 'I'm obviously not going to give any details over the phone' and 'I only ever use my banking app' might make them give up on repeated phone calls.

Any urgency from the caller is a red flag - as I'm sure you know - but they're quite subtle these days. Always call the provider yourself instead of accepting a cold call. Look up the number on someone else's device if you suspect your phone might have been compromised.

And definitely don't feel bad. These guys put a huge amount of effort into stealing from normal, decent, smart people.

No, I would say I fell for a phishing attempt @DiscoBob. I'm on an online chat with them now trying to verify.

@strawberrybubblegum Can you clarify about a banking app being safer than the website, please? (I use the app for routine things but tend to use my laptop for larger/unusual transactions because it somehow feels more secure to me.)

The AA website says they do use WhatsApp

Can anyone else get through to the AA on 0161 332 1789? Or confirm that's a genuine number?

Of course it’s a genuine number: www.theaa.com/breakdown-cover/renew

I know I'm beginning to sound a bit unhinged, but the number just says the office doesn't open until 9am and then cuts me off.

Fair enough. I hope it turns out to be real x

Well, the online chat bot went through the same questions / took the same info as the WhatsApp.
When I apparently spoke to a human he said the letter was genuine, the number was genuine and that they do use WhatsApp. He tried to get me to renew.

I think I'm going crazy.

That does seem to be a genuine AA number OP, although the main one they give is 0344 2090754. That's great that it seems to be genuine! And the silver lining is that you won't ever fall for anything after that scare!

@memorabletrenchcoat - there's no 'of course' about it. It's a pretty standard phishing technique that if they have compromised your device then they change your DNS (how your browser decides where to go for a particular domain name) and so your browser brings up fake site with a different phone number.

Thank you for being kind.

I'm feeling pretty rubbish now. The chat person wrote, "I request you to please connect with our team over call on this number 0343 316 4444 8am-7pm (Sat 9am-5pm)" and even that made me suspicious.
Firstly, the syntax is off and secondly, I'd already told him two times that the automated message said the offices are closed and ends the call.

(Just to be clear, that's not the number quoted in the letter, just the one I've tried ringing today).