Mixing
How should I verify a caller is from the bank or company they claim?
Clash Royale CLAN TAG#URR8PPP
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty margin-bottom:0;
up vote
2
down vote
favorite
I often get telephone calls from my personal bank, mortgage provider or utility companies.
In most cases they start by asking me to verify my identity through the usual name/address/date of birth or in the case of the bank, security questions I've agreed with them previously. The bank will ask for two digits of my four-digit PIN and a memorable word.
My concern is that I do all this without any way of checking their identity. I could be giving these details and any subsequent discussion of my account to an anonymous third party.
I understand that Caller-ID is not a reliable way of doing this and in any case these companies often use a withheld number.
I could ask for details of a recent transaction, but I can imagine that data protection would prevent them from sharing that with an unverified third party.
Should I refuse to give even partial answers to my security questions in this situation?
What is a sensible alternative?
authentication phone banks
asked 1 hour ago
James Bradbury
8631019
add a comment |Â
up vote
2
down vote
favorite
I often get telephone calls from my personal bank, mortgage provider or utility companies.
In most cases they start by asking me to verify my identity through the usual name/address/date of birth or in the case of the bank, security questions I've agreed with them previously. The bank will ask for two digits of my four-digit PIN and a memorable word.
My concern is that I do all this without any way of checking their identity. I could be giving these details and any subsequent discussion of my account to an anonymous third party.
I understand that Caller-ID is not a reliable way of doing this and in any case these companies often use a withheld number.
I could ask for details of a recent transaction, but I can imagine that data protection would prevent them from sharing that with an unverified third party.
Should I refuse to give even partial answers to my security questions in this situation?
What is a sensible alternative?
authentication phone banks
asked 1 hour ago
James Bradbury
8631019
add a comment |Â
up vote
2
down vote
favorite
up vote
2
down vote
favorite
I often get telephone calls from my personal bank, mortgage provider or utility companies.
In most cases they start by asking me to verify my identity through the usual name/address/date of birth or in the case of the bank, security questions I've agreed with them previously. The bank will ask for two digits of my four-digit PIN and a memorable word.
My concern is that I do all this without any way of checking their identity. I could be giving these details and any subsequent discussion of my account to an anonymous third party.
I understand that Caller-ID is not a reliable way of doing this and in any case these companies often use a withheld number.
I could ask for details of a recent transaction, but I can imagine that data protection would prevent them from sharing that with an unverified third party.
Should I refuse to give even partial answers to my security questions in this situation?
What is a sensible alternative?
authentication phone banks
asked 1 hour ago
James Bradbury
8631019
I often get telephone calls from my personal bank, mortgage provider or utility companies.
In most cases they start by asking me to verify my identity through the usual name/address/date of birth or in the case of the bank, security questions I've agreed with them previously. The bank will ask for two digits of my four-digit PIN and a memorable word.
My concern is that I do all this without any way of checking their identity. I could be giving these details and any subsequent discussion of my account to an anonymous third party.
I understand that Caller-ID is not a reliable way of doing this and in any case these companies often use a withheld number.
I could ask for details of a recent transaction, but I can imagine that data protection would prevent them from sharing that with an unverified third party.
Should I refuse to give even partial answers to my security questions in this situation?
What is a sensible alternative?
authentication phone banks
authentication phone banks
asked 1 hour ago
James Bradbury
8631019
asked 1 hour ago
James Bradbury
8631019
asked 1 hour ago
James Bradbury
8631019
asked 1 hour ago
James Bradbury
8631019
asked 1 hour ago
James Bradbury
8631019
8631019
add a comment |Â
add a comment |Â
2 Answers
2
active
oldest
votes
up vote
3
down vote
Should I refuse to give even partial answers to my security questions in this situation?
You should. Mutual authentication on the telephone really isn't trivial but important. One of the more common ways is always having the same person call you. A lot of banks will assign you a specific accountant who is responsible for you as a customer. Talking to him/her in person before makes it reasonably secure to talk to him on the phone by either recognizing his voice or arranging a keyword or something before.
A more simple approach: Call your bank and tell them about your concerns. Ask them for a solution; you might not be the first customer thinking about those problems.
answered 1 hour ago
Ben
1,372114
add a comment |Â
up vote
1
down vote
I would refuse to give out any personal details to anyone that called me as you can't verify who they are.
If they need to talk to you then say you can call back. You can then call through on the direct number, which if it is a large bank will be well known and on their website. You could then ask for an extension number to direct your call once you know you are through to your bank.
answered 27 mins ago
ChrisM
1297
New contributor
ChrisM is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |Â
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
3
down vote
Should I refuse to give even partial answers to my security questions in this situation?
You should. Mutual authentication on the telephone really isn't trivial but important. One of the more common ways is always having the same person call you. A lot of banks will assign you a specific accountant who is responsible for you as a customer. Talking to him/her in person before makes it reasonably secure to talk to him on the phone by either recognizing his voice or arranging a keyword or something before.
A more simple approach: Call your bank and tell them about your concerns. Ask them for a solution; you might not be the first customer thinking about those problems.
answered 1 hour ago
Ben
1,372114
add a comment |Â
up vote
3
down vote
Should I refuse to give even partial answers to my security questions in this situation?
You should. Mutual authentication on the telephone really isn't trivial but important. One of the more common ways is always having the same person call you. A lot of banks will assign you a specific accountant who is responsible for you as a customer. Talking to him/her in person before makes it reasonably secure to talk to him on the phone by either recognizing his voice or arranging a keyword or something before.
A more simple approach: Call your bank and tell them about your concerns. Ask them for a solution; you might not be the first customer thinking about those problems.
answered 1 hour ago
Ben
1,372114
add a comment |Â
up vote
3
down vote
up vote
3
down vote
Should I refuse to give even partial answers to my security questions in this situation?
You should. Mutual authentication on the telephone really isn't trivial but important. One of the more common ways is always having the same person call you. A lot of banks will assign you a specific accountant who is responsible for you as a customer. Talking to him/her in person before makes it reasonably secure to talk to him on the phone by either recognizing his voice or arranging a keyword or something before.
A more simple approach: Call your bank and tell them about your concerns. Ask them for a solution; you might not be the first customer thinking about those problems.
answered 1 hour ago
Ben
1,372114
Should I refuse to give even partial answers to my security questions in this situation?
You should. Mutual authentication on the telephone really isn't trivial but important. One of the more common ways is always having the same person call you. A lot of banks will assign you a specific accountant who is responsible for you as a customer. Talking to him/her in person before makes it reasonably secure to talk to him on the phone by either recognizing his voice or arranging a keyword or something before.
A more simple approach: Call your bank and tell them about your concerns. Ask them for a solution; you might not be the first customer thinking about those problems.
answered 1 hour ago
Ben
1,372114
answered 1 hour ago
Ben
1,372114
answered 1 hour ago
Ben
1,372114
answered 1 hour ago
Ben
1,372114
1,372114
add a comment |Â
add a comment |Â
up vote
1
down vote
I would refuse to give out any personal details to anyone that called me as you can't verify who they are.
If they need to talk to you then say you can call back. You can then call through on the direct number, which if it is a large bank will be well known and on their website. You could then ask for an extension number to direct your call once you know you are through to your bank.
answered 27 mins ago
ChrisM
1297
New contributor
ChrisM is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |Â
up vote
1
down vote
I would refuse to give out any personal details to anyone that called me as you can't verify who they are.
If they need to talk to you then say you can call back. You can then call through on the direct number, which if it is a large bank will be well known and on their website. You could then ask for an extension number to direct your call once you know you are through to your bank.
answered 27 mins ago
ChrisM
1297
New contributor
ChrisM is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |Â
up vote
1
down vote
up vote
1
down vote
I would refuse to give out any personal details to anyone that called me as you can't verify who they are.
If they need to talk to you then say you can call back. You can then call through on the direct number, which if it is a large bank will be well known and on their website. You could then ask for an extension number to direct your call once you know you are through to your bank.
answered 27 mins ago
ChrisM
1297
New contributor
ChrisM is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
I would refuse to give out any personal details to anyone that called me as you can't verify who they are.
If they need to talk to you then say you can call back. You can then call through on the direct number, which if it is a large bank will be well known and on their website. You could then ask for an extension number to direct your call once you know you are through to your bank.
answered 27 mins ago
ChrisM
1297
New contributor
ChrisM is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
answered 27 mins ago
ChrisM
1297
New contributor
ChrisM is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
answered 27 mins ago
ChrisM
1297
answered 27 mins ago
ChrisM
1297
1297
New contributor
ChrisM is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
New contributor
ChrisM is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
ChrisM is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |Â
add a comment |Â
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsecurity.stackexchange.com%2fquestions%2f193709%2fhow-should-i-verify-a-caller-is-from-the-bank-or-company-they-claim%23new-answer', 'question_page');
);
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
