You receive a call on your phone. The polite call centre worker on the line asks for you by name, and gives the name of your bank. They say they're calling from your bank's fraud department. "Yeah, right!" You think. Obvious scam, isn't it? You tell the caller to do unmentionable things to a goat. They sigh. "I can assure you I'm calling from Chase bank. I understand you're sceptical. I'll send a push notification through the app so you can see this is a genuine call." Your phone buzzes.…
Continue reading →
There's an incredibly distressing story in the BBC about a vulnerable elderly man who was conned out of his life savings. Fraud victim gets surprise £153,000 refund despite rules BBC News In the story, the heartless bank refused to refund the fraud victim due to an absurd technicality - the money was sent to a foreign account rather than a UK account. Once again, big business bending the rules in order to protect their profits from a defenceless pensioner. Only after protests did they …
Continue reading →
I've just finished watching the amazing documentary "Jobfished". It tells the story of a group of people who were conned into working for a "fake" company. You can read the news article - it's pretty depressing stuff. In the middle of a pandemic, people were asked to work for what looked like an established media agency, for people who appeared to have a long history in the sector. The pay was commission only, with the promise of decent salaries in a few months. But several members of the…
Continue reading →
You've heard of the AI Winter, right? The period where funding for AI dried up due to products failing to meet their hype. I think we're now in Springtime For Crypto - named after the musical "Springtime for Hitler" from movie The Producers - where scams abound. You should take a couple of hours to watch The Producers. Either the 1967 classic movie, or the 2005 remake will do. The pivotal moment in the film is when Leo Bloom has this stunning realisation: "Amazing. It's absolutely amazing.…
Continue reading →
Earlier this week, my holiday was interrupted by a sophisticated SMS scam. Rude! Let's take a look at it. Let's take a look at all the ways we can tell it is a scam. Firstly, and most obviously, I am not a customer of Lloyds Bank! But these scammers send out to multiple people hoping to catch victims. Secondly, I've not made a complaint to Lloyds! But, again, scammers know that plenty of people have. So this adds a touch of authenticity. If you were a Lloyds customer who had recently…
Continue reading →
Many moons ago, when I was very young and you were even younger... London was in full bloom of tech-startups. I was running my own consultancy. Dashing from business to business, trying to pick up work as an expert in this new-fangled "Mobile Internet" thing. Some of the companies I worked with were great. Some of them went bust. And some were... just... ew! Digging through a box of files the other day, I discovered an old NDA that I'd signed. The company has long since dissolved, and…
Continue reading →
Messaging app Signal is launching a payment service in the UK. This will allow users to send each other money cryptocurrency. Many people have written about why this is a daft idea. But they've mostly talked about why cryptocoins corrupt everything they touch. I want to talk about why this is a shitty idea from a product perspective. It all comes down to user needs. What pain point are you removing? Uber made taxis mildly less irritating, for example. But the UK already has a fairly mature…
Continue reading →
(A hastily written and grumpy post.) Another day, another Blockchain Bullshit project. Someone "claimed" one of my Tweets and added it to the Blockchain. I'm not particularly happy about that. Nor am I happy with the hoops I had to jump through to contact the company and remove my work. You can read the whole sorry thread on Twitter. But, mostly, I'm unhappy with this whole scammy "industry". Now my Tweet is an "NFT" - Non-Fungible Token - tradeable with other people for cold-hard-cash. …
Continue reading →
My mate Dom was moaning to his ISP on Twitter. They sent him a private message so they could look into his account. Blimey! Thankfully, that was a pretty brazen and inept attempt at phishing. Anyone asking for all your card details like that should set the alarm bells ringing. Of course, phishers often target credulous people who don't understand that they're being scammed. By sending an email that repels all but the most gullible the scammer gets the most promising marks to self-select, …
Continue reading →
Another day, another phone scam. Yesterday, I received a call from +442085044434 by someone trying to get me to "invest" in BitCoin and other Cryptocurrencies. I managed to drag the call out for 6 minutes - have a listen: 🔊 💾 Download this audio file. The caller admits the trading and advice isn't regulated. That they don't need permission to make marketing calls. And that Estonia is the home of many Cryptocurrencies(!) I'm not a brilliant scam bater. I didn't manage to get his addr…
Continue reading →
*sigh* These scams are really common. And pretty easy to pull off. Renting an expensive sports car for a day is relatively cheap. Drive it to some fancy locations, wear a couple of rented designer clothes, perhaps pay for a pretty model to pose as your girlfriend, take a load of photos and you can fool Instragram users into thinking you're rich and successful. And then you tell people on social media that if they want your lifestyle, they just need to "invest" in... And, if you're really…
Continue reading →
Yesterday, January 2nd, my wife received a billing alert from her phone provider. Luckily, she's not with EE - because it's a pretty convincing text. That domain name is specifically designed to include the day's date. If you're stood up on a crowded train, with your phone screen cracked, would you notice that a . is where a / should be? A quick look at the URl shows a trusted domain at the start - followed by today's date. It starts with https:// - that means it's secure, right? Is .info…
Continue reading →
· bank CyberSecurity phishing scam security · 7 comments · 550 words · read ~3,526 times.