Phone call from unrecognized number: X: "Hi, we are CREDIT CARD COMPANY X FRAUD DEPARTMENT. We'd like you to verify some information." ME: "Are you kidding me? You're training your customers to fall for scams?!? Nobody should give out info in response to random call." X: "Oh."
-
Show this thread
-
There was also the time DCCC was providing security advice to campaigns... by sending them attachments.
https://www.washingtonpost.com/outlook/2018/09/04/im-teaching-email-security-democratic-campaigns-its-bad/ …2 replies 12 retweets 82 likesShow this thread -
I also like those "click here to enroll in XYZ" emails from credit cards. Training customers to fall for phishing.
6 replies 9 retweets 69 likesShow this thread -
zeynep tufekci Retweeted
zeynep tufekci added,
This Tweet is unavailable.2 replies 4 retweets 47 likesShow this thread -
zeynep tufekci Retweeted Blank. Don't tell me what my name can't be.
It's mind-boggling the stupid things consumer finance companies will do like this, in spite of the fact that at least in the United States, they usually end up having to cover and/or pay for fraud.https://twitter.com/BoenderCarol/status/1037765638675226626 …
zeynep tufekci added,
Blank. Don't tell me what my name can't be. @BoenderCarolReplying to @zeynepI got one from my bank saying there were questionable transactions on my account with a button to click to review them. I ignored the button, logged into my account, and looked for a message about the issue. There was nothing, so I assumed a scam. Later, they called, legit.4 replies 13 retweets 60 likesShow this thread -
zeynep tufekci Retweeted Mike Brown
zeynep tufekci added,
3 replies 13 retweets 132 likesShow this thread -
zeynep tufekci Retweeted Willy Lee (they/them)
Ah, yes, unquestioningly run all the .exe files sent to you by your "CISO"! (Is this like the corporate version of trust-building exercises? Fall backwards into arms of your colleagues or something?)https://twitter.com/advicepig/status/1037780818356260864 …
zeynep tufekci added,
2 replies 11 retweets 64 likesShow this thread -
zeynep tufekci Retweeted
Sounds about right! https://twitter.com/djnemec/status/1037799363681116160 …
zeynep tufekci added,
This Tweet is unavailable.2 replies 3 retweets 35 likesShow this thread -
Also, kudos to
@Chase for labeling the verification codes as “OTP” without any other explanation on the text messages sent probably to millions of customers, all of whom are no doubt fully-versed in infosec acronyms! Here’s your OTP random bank customer. All legit.pic.twitter.com/jc5taz9cIp
4 replies 2 retweets 36 likesShow this thread -
You might want to delete that tweet. Do not use the highlight tool on iOS to redact sensitive info like your OTP. It’s called a highlight tool for a reason.
1 reply 0 retweets 0 likes
It’s sensitive at all, actually. I redact for no reason, tbh. Habit.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.