677
Have I Been Pwned owner, pwned. (htxt.co.za)
submitted 5 days ago* (last edited 5 days ago) by Tea@programming.dev to c/technology@lemmy.world
66 comments fedilink hide all child comments
  • A jetlagged Troy Hunt accidentally clicked a link and logged into an account only to realise he had been phished.
  • Despite reacting quickly, attackers were able to export a mailing list for Hunt’s personal blog.
  • Hunt has detailed the attack and warned his subscribers in a timely fashion.
you are viewing a single comment's thread
view the rest of the comments
[-] drspod@lemmy.ml 7 points 5 days ago

I personally know of two different banks who send a notification to your phone app to verify that it's you they are speaking with on the phone, and they will do this even when it's them that called you and not the other way around.

It's security theater as it doesn't prove anything to either party (as it's trivial for scammers to have a man-in-the-middle) but they still do it.

[-] WindyRebel@lemmy.world 5 points 5 days ago

Then you tell them you will call them back, hang up, call the bank yourself and do it that way. If they are legit, they can tell you their name and extension and you can verify that is even real when you personally call the bank.

[-] Buckshot@programming.dev 2 points 5 days ago

I did this once, it was legitimate but he refused to tell me even what department he called from. I said i wasn't going to give personal into to an incoming call and i wasn't calling back unless i knew why. He ended up mailing me a letter instead.

I almost got scammed a few years ago by being called about fraudulent activity the day after i reported fraudulent activities, in hindsight I think they just got lucky with timing, but I take no chances now.

Ever noticed how decades ago if someone defeated a bank's security we called it bank robbery, but now it's called identity theft and we get blamed for it.

this post was submitted on 27 Mar 2025
677 points (100.0% liked)

Technology

68130 readers
3092 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws