topic Re: Phishing calls in Industry News

Phishing calls

rslade — Wed, 05 Jun 2019 18:58:44 GMT

Was awakened by a phone call this morning. Obviously recorded, probably computer generated.

Telling me that there were spurious charges on my Visa card.

Right off there were indications that this was a fraud. First off, it didn't identify the issuing bank, and identified the card by saying the number started with 45. (All Visa cards start with 45 ...) Also, while the message was recorded or generated, there was no change in tone when the message got to identifying the charges. Recorded calls using something out of a database usually have a slight change in tone at that point. (I figured it was a bit of a gamble telling me that I had a charge from Amazon for $300 and one from Google Play for $1,000, since I might deal with those entities, but I suppose the risk is small.)

I was supposed to stay on the line for a security agent, but I didn't feel like playing games with them. I assume someone would have been trying to get info that they could then use to actually perpetrate a fraud on my card.

A bit later I went to the bank. They obviously knew about the calls and the script. (And confirmed that there were no charges or flags on our card.)

Re: Phishing calls

emb021 — Wed, 05 Jun 2019 19:51:14 GMT

I have several Visa cards.

NONE start with "45". They start with "4", but that's it.

Re: Phishing calls

dcontesti — Wed, 05 Jun 2019 20:45:02 GMT

LOL VISA cards in Canada start with 45. Rob is in BC and I am in Ontario....so making an assumption that all banks that issue VISAs in Canada use 45 as the first two numbers. I have two cards with two different banks.

I believe they have a different number that they start with in other countries but have no proof of that.

BTW: I may be off the forum for a while.....My phishing call was from the CRA (Canada Revenue Agency) telling me that I owe the government a lot of money and unless I pay using my credit card, the police will arrest me....funny thing was when I told them that I would be happy to be arrested that I would finally get three meals a day, THEY HUNG UP.........

so if I am not replying to anything or saying things, send packages to the Vanier Centre for Women in Milton.....

Best

Re: Phishing calls

Steve-Wilme — Thu, 06 Jun 2019 09:32:35 GMT

BIN ranges should be well understood:

https://en.wikipedia.org/wiki/Payment_card_number

https://binlist.net/

Re: Phishing calls

emb021 — Thu, 06 Jun 2019 14:47:00 GMT

@dcontesti wrote:

BTW: I may be off the forum for a while.....My phishing call was from the CRA (Canada Revenue Agency) telling me that I owe the government a lot of money and unless I pay using my credit card, the police will arrest me....funny thing was when I told them that I would be happy to be arrested that I would finally get three meals a day, THEY HUNG UP.........
so if I am not replying to anything or saying things, send packages to the Vanier Centre for Women in Milton.....

Sounds like a variant of the IRS calls people get here in the US, often times made by people with an Indian accent. Hadn't heard they were doing the same thing in other countries, but guess it's the same.

Re: Phishing calls

dcontesti — Thu, 06 Jun 2019 16:15:48 GMT

Folks will do anything to try to defraud you.

Re: Phishing calls

dcontesti — Thu, 06 Jun 2019 16:47:16 GMT

@Steve-Wilme wrote:
BIN ranges should be well understood:

https://en.wikipedia.org/wiki/Payment_card_number
https://binlist.net/

Very true, but if I were a scammer and trying to defraud someone in Canada, I would probably use this list:

https://stevemorse.org/ssn/List_of_Bank_Identification_Numbers.html#Visa_.2845.2A.2A.2A.2A.29

Or something similar.....and see that most banks in Canada use 45 as the first two numbers....otherwise their scam would not go very far. Can you imagine a call that says "I am calling about your credit card that starts with 4.". They would not get very far and most would hang up on them at that point. However with the first two numbers folks might pay more attention to them (especially the elderly).

The first six numbers of any Visa and Mastercard are code numbers for the issuing institution. By these 6 digits anyone can know which institution issued the card, and what type of card it is (debit/credit, premiere or not, etc).

I think the lesson here, is that if your bank calls you regarding a potential fraud on a credit card, they have much more information than the first number or the first two numbers, they identify themselves clearly (actually they allow you to call them back for verification), they know your entire credit card number, they know your address, etc.....there is usually no mistaking these calls.

And the CRA or the IRS will never all you at home.....their communication is done electronically or via snail mail.

It is actually that these folks existed and continue try to rob people.

But then such is life.

Best regards on a Thursday

Re: Phishing calls

rslade — Thu, 06 Jun 2019 18:52:05 GMT

> emb021 (Contributor I) posted a new reply in Industry News on 06-06-2019 10:47

> Sounds like a variant of the IRS calls people get here
> in the US, often times made by people with an Indian accent. Hadn't heard they
> were doing the same thing in other countries, but guess it's the same.

The phone calls are relatively new (recall how old I am ...), but, over the years,
I've had tax phishing spam email from the IRS, Revenue Canada, and the UK
revenue office ...

====================== (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org
Separation of test and production environments is one of those
things that is such basic common sense that it wouldn't occur to
me to have to point to something that says to do it. The first
time you test something on your production network and it breaks
something else which breaks something else, etc etc etc is the
LAST time they will ask you why it has to be done on a separate
network. - Mim Britt, CISSPforum 20090126
victoria.tc.ca/techrev/rms.htm http://twitter.com/rslade
http://blogs.securiteam.com/index.php/archives/author/p1/
https://is.gd/RotlWB

Re: Phishing calls

vt100 — Fri, 07 Jun 2019 02:13:41 GMT

@rslade , in response to your randomly chosen quote "Separation of test and production environments is one of those things that is such basic common sense..."