on 03-04-2018 11:27
Trusting Human Speech.
We would all agree security is important and we're certainly used to security codes and memorised passwords and phrases. But is the process being taken to extremes? Recently I needed to change my bank details and had to read out sort-code and account number having read out a security phrase. But I was surprised to hear the O2 telephone operator refusing to read the bank details back to me. This was, it was explained, because an eavesdropper might hear them. I pointed out that the risk had already existed when I gave them! The only risk that would be unique to the CS operator reading out aloud would be an eavesdropper in that call center. I also reflected that I had to read my entire secuity phrase and not just selected characters, such as the 1st and 5th (say).
In the end I decided it would be better to wait until I could use the online My Account service (currently unavailable due to a sending codes bug and or local mast problem). I of course acknlowledge that my bank details would have been automatically verified when checked with my bank. But just how do we trust human speech?
on 03-04-2018 13:59
on 03-04-2018 13:59
03-04-2018 16:49 - edited 03-04-2018 16:51
03-04-2018 16:49 - edited 03-04-2018 16:51
Bank details and the whole security phrase.. that’s not risky... it’s totally bizarre
fantastic username!
on 03-04-2018 18:09
on 03-04-2018 18:09
on 03-04-2018 18:25
on 03-04-2018 18:25
on 03-04-2018 23:34
on 03-04-2018 23:34
Given the amount of background conversations I tend to hear whilst contacting call centres (have caught out an electricity call centre with a background conversation just after they lied to me on the same subject), I can understand that it could be another customer ringing in and overhearing or worse, some fraudster recording a call and getting a bonus of bank details.
on 04-04-2018 07:40
on 04-04-2018 07:40
on 05-04-2018 00:41
Some places do.. Yorkshire bank ask for details using only the keys on your phone! That includes letters too!
on 14-04-2018 19:09
on 14-04-2018 19:09
As someone currently looking to set up their own business, I can tell you the whole rules and regs behind financial data storage and handling (alongside data protection in general) is so comprehensive it is enough to make your head spin!
I am in total agreement that these details shouldn't ever be seen by anyone other than the bank or card company issuing card or providing the bank account and the account holder.