Just got scammed out of almost 1k

[BonneMamanAbricot]

Please be so careful of phone calls from your bank. Always call them back, as caller ID can be faked. My actual bank said they had never seen this scam. They duplicated everything, all the spiels, the robot connecting voice, the hold music.

Second month of being paid after 5 months of no income. Back to nothing again. FFS.

I’ve just set up a Lloyds app on a new device to test this out and it asked for verification from another device it did not send a phone call.

It's very good of you to share this op and I'm relieved for you that you got your money back.
Banks can significantly reduce their overheads by encouraging us all to bank online so that they don't have to have brick and mortar premises. But they have to weigh that against the losses from having to compensate people who are scammed due to everything being online.
I wonder where this will all end up.

This is a new feature, if you chose to verify another way it would have sent the call, I don't know why you think I'm lying?

It’ll be other customers that end up paying. People need to take responsibility for themselves. Don’t answer the phone if you’re daft enough to get caught out on this stuff. This scam has been going forever.

I don’t really understand this. If I had a call from the ‘bank’ reading out a list of fraudulent transactions, I would go straight to my online banking and check??

I would also know that my bank would not phone me about it, and even if they did, I would hang up, and call them back through the banking app on my phone.

Sorry it’s happened to you OP, but this is pretty basic.

There is literally no security protocol that can’t be undone by human failure. It’s literally impossible to protect against.

Well I literally did it yesterday and it did ring. I had no access to another device with a logged in app so I wouldn’t have chosen to verify with another app. Presumably the scammer did the same.

I don’t think you’re lying, I was testing as puzzled as to why Lloyds would offer that method, but it didn’t offer it to me.

I think you’ll be able to get at least 50% back from your bank. Even though it’s not their fault, there’s a new regulation re push payment fraud.

Please do contact your bank, these cases are now the most common form of fraud and the circumstances will be considered. It is not always the case that money will only be refunded if it can be recovered, so you really should raise a fraud claim

How do you think the scammers got an OTP to give to the op on the phone call?

I thought she must be confused as that’s not the normal state of affairs. I thought it more likely that the scammers sent a fake “automated” call to her mobile in which she entered the code.

That’s how these scams normally work - people are conned into giving out their OTP.

In any case OP doesn’t seem to have Lloyds.

This wouldn't always work. Banks do ring customers because of fraudulent transactions but if the bank have prevented the payment going out it wouldn't show on your banking but the bank have it reported as prevented fraud and would ring to let you know.

I'm sorry you got scammed. That's shitty.

It's all over the Internet and banks also advise to be cautious when govong out details as they would bever adhoc ask you do that.

I hope this has been a wake up call to be super cautious and not trust everything you hear no matter how convincing it may seem.

Get clued up. Protect your money. Don't Gove out your details at the drop of a hat unless you know it's legitimate.

M&S didn't get bank details stolen but they did get customer details, name, address, DOB, email address etc stolen including passwords. So the scammer has those details. Many people will use the same password for multiple websites so the scammers will try the email and password in other websites. Bearing in mind this isn't always a case of someone sat at a computer doing this manually, they have scripts that they run to do this testing thousands of different sites and combinations. They may then get a hit and have got into a website you used and stored your card details. That's why M&S said if you have an account with them and use the password elsewhere change it. You should also not have the same password across multiple sites. Passwords should also be a random combination of letters, numbers, upper and lower case and special characters and should be long.

Right, I see.
Neither of my bank accounts work like that (personal and business accounts with two different banks). They both tell me exactly what it is I am authorising with the code. That didn’t happen with whichever bank the OP is using - she just had to input/read out the code - so it seems their system isn’t as robust as those that other banks are currently using.

Maybe not but the introduction of a simple message to tell you not to enter the code unless you have actively undertaken the process to change device of your own choice with no one else asking/telling you to would have avoided this situation

Clearly can't remove all risk but this one could be addressed easily

They said the payments had been frozen and placed on a hold due to potential fraud so they wouldn’t show up on my transactions

Yes a 'courier' will be sent. I had a scamming phone call a couple of years back, frightening as the person knew my bank account details and what savings I had. I told them I needed to check something and could they ring me back then rang my bank from another phone. They were fabulous, very clued up and told me to ring 999 as one of the scammers would indeed come to my front door. I did and had the police on one phone listening to the scammers on the other when they rang me back. I got a tirade of abuse when the scammers realised they had been rumbled. It was very frightening at the time

Ik but in this case the op says they gave her the code.

I’m wondering how that could happen

This.

Can you ring your bank again and say you're puzzled by some aspects of your conversations with them, e.g. their claim that this was a new scam and their refusal to refund, and push to have your money refunded? From your posts you sound like the kind of person who might be a bit shy about doing that - could you get a supportive friend to sit with you while you talk to them?

Might be worth taking a look at the moneysavirngexpert website as well - that is sometimes good at offering scripts and examples of how people have managed to get money refunded, though I haven't checked for their latest scam advice.

As per my previous post, this is exactly what happened when someone was trying to make payments from my account. First Direct absolutely did call me to check, and because they had noticed an unusual pattern of attempted spending on my account they had blocked them all until they spoke with me. So it wouldn’t have mattered if I’d logged in to check - they wouldn’t have been there.

So it’s not pretty basic if different banks are doing entirely different things.

Because if the bank itself is, on some level, responsible for the scamming process to be easier for the scammers, then they are at fault. Plenty of us have now said our banks tell us exactly what it is we are authorising with the codes we are sent. OPs bank doesn’t do that - she just had to read it out to an automated system. Which is probably one reason why customers of whichever bank this is are targeted.

Don't be. When my dad's card got taken in one of those skimmers over an atm. the bank was acting ridiculous about how the scammers got the pin number to the card... 🤦🏻‍♀️🤦🏻‍♀️🤦🏻‍♀️🤦🏻‍♀️ kept asking my dad if he told anyone the pin even though he had clearly told them he typed it into the fake keyboard over the atm.

But surely you knew that was nonsense?