What bank data is it safe to call an outsider?
It all depends on why they ask you:
To transfer money to you
In this case, you can safely inform the sender:
For example, criminals call on behalf of the "bank security service" or even the "police investigation department", address by first name and patronymic and call the card number. So they try to inspire confidence, and then convince you to transfer money to a "safe" — actually fraudulent — account.
Therefore, you should not transfer any information about your accounts and cards to others unnecessarily. And in no case do not publish your personal data and bank details in the public domain, for example in social networks. After all, scammers study them carefully.
To clarify the situation with the bank
Suppose you suddenly received money on your card, and you don't know who sent it to you and why. Trying to figure out the situation, you call the bank.
First, the employee must make sure that it is really you, and not a fraudster. To do this, he will ask for your full name, passport number, and can also clarify:
But be careful if you suddenly get a call from the bank and are asked to clarify confidential data. Do not lose your vigilance: even when a familiar short bank number is displayed on your phone, it may turn out to be a substitute. It is always better to hang up the phone, dial the hotline number yourself and clarify the situation.
What bank data cannot be disclosed to anyone and why?
There are data that bank employees never ask — if someone tries to get them out of you, you are definitely faced with fraudsters. It is important to always keep a secret:
What should I do if I have already informed scammers of confidential information?
Block the card urgently: this can be done quickly in the bank's mobile application or by calling the hotline number. This way you will cut off the scammers' access to the money in the account, and perhaps they will not have time to steal all your savings.
If the attackers have obtained the login and password from your personal account on the bank's website, ask the hotline operator to immediately disable remote access to the account. Otherwise, scammers will be able not only to appropriate all your savings, but also to issue a loan in your name.
Then the card will have to be reissued — then its details will change, and the previous ones, known to criminals, will become invalid. Create a new username and password for the online bank.
Just in case, ask for your credit history — make sure that the scammers have not issued loans in your name.
The article "Social engineering: why people give money to fraudsters themselves" will help to figure out with the help of which schemes fraudsters lure out other people's data and savings. Even more stories can be found in the "Rake" section.
It all depends on why they ask you:
In this case, you can safely inform the sender:
- The name of the bank and the phone number to which the account is linked. In most cases, this data is sufficient for translation. They will allow another person to instantly transfer money to you, for example through a Quick payment System.
- Bank card number. It is located on its front side and usually consists of 16 digits. Knowing this number, a person will be able to send you money through another bank's application, terminal or ATM. It is safe to call the card number if you do not provide other details in addition.
- Current account number. It consists of 20 digits. You can find it in your online bank or request it from a bank branch using your passport. Organizations prefer transfers by account number, for example, when they pay for the work of freelancers. Additionally, they request the details of the recipient's bank — BIC, correspondent account — they can also be called without risk to themselves, because these data are publicly available and do not open access to your savings.
For example, criminals call on behalf of the "bank security service" or even the "police investigation department", address by first name and patronymic and call the card number. So they try to inspire confidence, and then convince you to transfer money to a "safe" — actually fraudulent — account.
Therefore, you should not transfer any information about your accounts and cards to others unnecessarily. And in no case do not publish your personal data and bank details in the public domain, for example in social networks. After all, scammers study them carefully.
To clarify the situation with the bank
Suppose you suddenly received money on your card, and you don't know who sent it to you and why. Trying to figure out the situation, you call the bank.
First, the employee must make sure that it is really you, and not a fraudster. To do this, he will ask for your full name, passport number, and can also clarify:
- The last four digits of the card number. According to them, he will quickly find it in the system to sort out the situation. Be careful: it is the last digits of the long number on the front side of the card that you need to dictate.
- Code word. You specify it when you sign a contract with the bank.
But be careful if you suddenly get a call from the bank and are asked to clarify confidential data. Do not lose your vigilance: even when a familiar short bank number is displayed on your phone, it may turn out to be a substitute. It is always better to hang up the phone, dial the hotline number yourself and clarify the situation.
What bank data cannot be disclosed to anyone and why?
There are data that bank employees never ask — if someone tries to get them out of you, you are definitely faced with fraudsters. It is important to always keep a secret:
- Three digits from the back of the card. CVV (Card Verification Value) or CVC (Card Validation Code) code. These three numbers should be known only to you. Usually they need to be entered when paying for purchases on the Internet. Call these numbers to someone along with the card details - in fact, you will give the green light to scammers, who will be happy to poke around at your expense.
- Passwords and codes from bank notifications. The Bank sends secret one-time codes and passwords to confirm your transactions or log in to your personal account. This is an additional protection of your accounts from fraudsters. Telling an outsider these numbers is like giving a thief the keys to the apartment where the money is.
- The validity period of the card. Sometimes, for online purchases by card, neither CVV/CVC code, nor passwords and codes from SMS and push notifications from the bank are needed — the card number and its expiration date are enough. Therefore, it is also impossible to call anyone. Real employees of the bank can check it themselves.
- PIN code of the card. Keep it a secret, don't write it on the map and don't keep it nearby. If a fraudster steals it, then it will not be difficult for him to withdraw all the money from the account.
What should I do if I have already informed scammers of confidential information?
Block the card urgently: this can be done quickly in the bank's mobile application or by calling the hotline number. This way you will cut off the scammers' access to the money in the account, and perhaps they will not have time to steal all your savings.
If the attackers have obtained the login and password from your personal account on the bank's website, ask the hotline operator to immediately disable remote access to the account. Otherwise, scammers will be able not only to appropriate all your savings, but also to issue a loan in your name.
Then the card will have to be reissued — then its details will change, and the previous ones, known to criminals, will become invalid. Create a new username and password for the online bank.
Just in case, ask for your credit history — make sure that the scammers have not issued loans in your name.
The article "Social engineering: why people give money to fraudsters themselves" will help to figure out with the help of which schemes fraudsters lure out other people's data and savings. Even more stories can be found in the "Rake" section.