all InfoSec news
Bank of America is using phone numbers from 3rd party databases that they guess are linked to you to authenticate and verify users when you call support. Major vulnerability, why isn’t this a big story?
Feb. 18, 2024, 3:38 a.m. | /u/RevolutionaryJob6784
cybersecurity www.reddit.com
1. I recently called Bank of America’s credit card fraud department.
2. To verify my account, they said they needed to text me a code, and they listed off a couple of phone numbers that I had never heard of before.
3. After verifying with my real number, I asked them how those numbers got added to my account because I’m not familiar with them and I never added them.
4. They told me these numbers …
account america authenticate bank bank of america big call called card card fraud credit credit card credit card fraud cybersecurity databases department fraud isn major numbers party phone phone numbers story support verify vulnerability
More from www.reddit.com / cybersecurity
Picking your sources of IoC
1 day, 10 hours ago |
www.reddit.com
Are password requirements useless?
1 day, 10 hours ago |
www.reddit.com
Upcoming conferences for 2024?
1 day, 11 hours ago |
www.reddit.com
How does a processor execute encrypted binaries.
1 day, 12 hours ago |
www.reddit.com
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Senior - Penetration Tester
@ Deloitte | Madrid, España
Associate Cyber Incident Responder
@ Highmark Health | PA, Working at Home - Pennsylvania
Senior Insider Threat Analyst
@ IT Concepts Inc. | Woodlawn, Maryland, United States