We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide
How thick are banks?
jimbo12345_2
Posts: 2 Newbie
Martin Lewis please publicise! There's a link on the smile.co.uk site 'important information' at the base of their homepage that says they will always include the last three letters of your post code in any emails from them. They say this is so you can be sure the email is genuine - how stupid is that? Any body who gets hold of your postcode can add three letters to an email!!! By saying this publicly they have issued an invite for phishers and scammers everywhere to use the mechanism to convince people scams and phishing emails are genuine. I just can never get over how thick this bunch of bankers are! Martin Lewis please publicise!
0
Comments
-
Be serious, it is a perfectly adequate security measure.
You haven't thought it through.
GGThere are 10 types of people in this world. Those who understand binary and those that don't.0 -
Of course I have thought it through. It is completely inadequate. Think about it:
1: Smile say their customers can trust any email PURPORTING to come from Smile, that mentions my postcode.
2: my, your, anyone's, name, email and postcode are easy to find out.
3: It is very easy to set up a false Smile email account.
4: Unfortunately people do respond to phishing emails and will be more likely to if they are lulled into a false sense of security by the last three letters of their postcode...
The rest is easy to work out if you are a scammer or phisher. It therefore is a totally INADEQUATE security measure.0 -
jimbo12345 wrote: »Of course I have thought it through. It is completely inadequate. Think about it:
1: Smile say their customers can trust any email PURPORTING to come from Smile, that mentions my postcode.
2: my, your, anyone's, name, email and postcode are easy to find out.
3: It is very easy to set up a false Smile email account.
4: Unfortunately people do respond to phishing emails and will be more likely to if they are lulled into a false sense of security by the last three letters of their postcode...
The rest is easy to work out if you are a scammer or phisher. It therefore is a totally INADEQUATE security measure.
Scammers send out bulk emails and get people who are not clever enough to delete an email from a bank or will confirm their details online. If SMILE sent you an email and got the right post code are you seriously telling me that you would put your details into that??
As I said, scammers/phishers send out bulk emails so their likelihood of success is pretty low since in this day and age we are all suspicious of bank emails. Please be reasonable or if not, write to SMILE and ask them the questions and then post back the response on here. Worth the cost of a stamp, I would think.0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 354.4K Banking & Borrowing
- 254.4K Reduce Debt & Boost Income
- 455.4K Spending & Discounts
- 247.3K Work, Benefits & Business
- 604.1K Mortgages, Homes & Bills
- 178.5K Life & Family
- 261.6K Travel & Transport
- 1.5M Hobbies & Leisure
- 16K Discuss & Feedback
- 37.7K Read-Only Boards