On Wed, 2012-04-25 at 00:08 +0100, RW wrote: > On Tue, 24 Apr 2012 15:23:28 +0100 > Martin Gregorie wrote: > > > On Tue, 2012-04-24 at 14:25 +0100, RW wrote: > > > On Mon, 23 Apr 2012 01:20:13 -0300 > > > xTrade Assessory wrote: > > > > > > > > > > no serious bank, as any other serious company, would ever send out > > > > emails asking for user details > > > > > > > > the user who believes that, is or incredible ingenious or > > > > incredible stupid, so: happy clicking > > > > > > I don't think it's all that stupid given that many banks and other > > > companies do more or less the same thing when they phone their > > > customers. > > > > > That merely shows that stupidity is extremely widespread: other > > outfits being lax about security doesn't give the banks a free pass. > > > I meant that it's understandable that people fall for phishing when > banks set a bad example by phoning customers and requiring the customer > to provide personal information to establish his or her identity. > Point taken, but its still inexcusable of a bank to do that.
If somebody claiming to be my bank calls me and starts asking security questions I tell them politely but firmly that I don't believe they are from the bank and that I'll call them. Then I put down the phone and ring the number I have on file for that bank. Martin
