Just got scammed out of almost 1k

[BonneMamanAbricot]

Please be so careful of phone calls from your bank. Always call them back, as caller ID can be faked. My actual bank said they had never seen this scam. They duplicated everything, all the spiels, the robot connecting voice, the hold music.

Second month of being paid after 5 months of no income. Back to nothing again. FFS.

But, if you end the call and ring the bank back using the official number on your card/online banking you will get through to your ACTUAL bank. The scammer’s not infiltrated Natwest as some kind of undercover fraudster. Just don’t ever call them back directly using the number they called you on. End the call and redial the official number. That’s what I’ve done to protect myself. However, some posters are now implying that if you hang up and call the bank’s official number the scammer can somehow redirect the call back to them. I really need to know if this is an actual thing or just scaremongering. I’m going to check with an official source obviously, but I don’t think spreading misinformation as facts (which gently, you and some other posters have done here)is helping people understand and protect themselves against fraud.

The extra info about the online banking details being changed is key imo, that's what you want to concentrate on and find out what the controls are around that. How were they able to change those?

I still can't work out why you needed to input that code somewhere rather than the scammers

Do contact the bank though. You may get compensated

It's not a thing, some posters are misunderstanding others and some are spreading misinformation e g banks don't call customers.

I think it’s because there have been cases in the past where the scammers have pretended to hang up, so when the victim calls the proper bank number they think they’re calling their bank but they’re really still on the line to the scammer. I doubt that still works with modern phones/ mobile phones though.

Come on, we shouldn’t victim blame. If we start victim blaming for one type of crime, where would it end? Women walking alone at night? Getting drunk? Wearing a mini skirt? You get my gist. The perpetrators are ALWAYS the ones to blame.

I am really sorry you were conned. They rely on the victim getting flustered.

I think the scammers needed to use the OTP code on a verified device. They’ve tricked her into authorising the code they received.

I had a similar call after buying a car.

Before discussing the account, they asked me to name a couple of the organisations that I have a monthly direct debit for to verify that it was actually me they were speaking to.

I was quite impressed, tbh.

I was advised to call back on a different phone to avoid this happening.

Yes, possibly but what's worrying is how they got the OTP to an unverified number in the first place. That's what the bank needs to explain imo

Yes, this is bugging me too.

I wonder if, somehow, they managed to get hold of her Bank card. Either through cloning? Or through some sort of postal scam where they apply for a second card and then intercept it in the post?

Then they use that in one of those card reader devices that gives you a code to input via your phone???

All speculation of course.

Yep good to reiterate this.

That sounds horrible op

They haven’t compromised your code, they’ve comprised your online banking. With Lloyds group, for example, when you log into your online banking when a new device they ring you and ask you to input the code on your device. This is likely what they’ve done, and then they can log into your online banking, change your number and make payments.

So it’s probably your email address that’s been compromised at some point. Change your email address password and your online banking password - and if anyone ever rings you for anything at all like that, hang up and call them back on a number you know to be right (if they’ve rang your landline, ring back from another telephone).

PP’s have said your bank will never ring, that’s not true - both Chase and TSB have legitimately rang me before (once to alert me of fraud, once to check a large payment I’ve made was actually me) - but in both scenarios they were understanding of me not giving information or taking action and ringing them back instead.

Also, this is a very common scam so I’m alarmed the bank have said they’ve never heard of it before. I‘m not a scammer but if I was going to try and hack someone’s bank account this is exactly how I’d do it.

No it is NOT good to keep reiterating this. Because it's WRONG.

As quite a few people have pointed out!

If you want to say something useful reiterate the comment about hanging up and dialling 159 which gets you to a cross bank fraud line.

They asked me for my acct number and sort code to 'verify' my account.

Banks will never ask for this information - they have made it very clear this is the case. This is essentially your password to your accounts.

What I have noticed is that these scams usually kick off when a retailer has been hacked, some information like name and address/phone number has been sold online and they need the other half of the information, like bank details, which have been encrypted (by law).

Sounds really tricky. The giving you a code thing.

Either way it’s good to hang up and call directly. If all someone remembers is to do that it’s better than remembering this take that sometimes they call.

I think they meant 'new to you' as in had just happened...

See my last post. I got a new phone yesterday, to log into my Lloyds account the device showed me a number and rang the number from the registered account and I had to put the number from the device in. It was to prove that I had both the registered number and the new device that was logging in in front of me.

It’s also how all Halifax and Lloyds parent approvals work, they ring you and you input the code shown on your screen.

I think the scammers were getting approval for their device to log into OP’s internet banking where they then had unfettered access.

They’re nothing like the passwords to your accounts. You’ve told them to every utility provider you’ve ever had, everyone who’s ever provided you with debt, shown them to everyone who has ever seen your debit card and they’re on every cheque you’ve ever sent.

Jeremy Clarkson sort of proved this with his experiment years ago. He printed his account number and sort code in the paper - all that happened was someone set up a charity direct debit in his name, that he could have had refunded but didn’t because it was charity.

I agree victims should be treated kindly and not shamed. I don’t think people are victim shaming though. They’re looking at ways to protect themselves from low life criminals. I absolutely wouldn’t walk home alone at night and I wouldn’t encourage my daughter to. I get what you’re saying, but it’s also so important to be allowed to learn lessons without being labelled victim blamers. It just needs to be discussed respectfully. Your way of thinking can be quite dangerous in preventing open discussion about difficult topics where information can and should be used to reduce the likelihood of further crimes.

If you want to call your bank after a potential scam call, ring the speaking clock first.

That way you know the line is clear.

That's not true. I made a small purchase in Sardinia a few years ago and m bank texted me to ask if it was an authentic transaction. I replied yes, but they followed up with a phone call. I was suspicious but it was legitimate. I almost got caught by a similar scam to above, he asked me for my bank password citing fraudulent transactions on my account and saying they were opening up an investigation into it. l almost gave it to him but sensed a red flag and hung up. Rang the no.back from different phone later that day and he answered naming a different bank. ..

Yes agree with you there. If someone wants to be paid for a service they give sort code and account number.