Submitted by kchang07 t3_10pv79m in personalfinance
So on 1/28, I got a call from a legit chase fraud prevention number saying they’d like to verify some transfer activities. They asked to verify my identity. The rep mentioned I could also call back using the number on the back of my card.
I gave it a brief thought and kindly rejected, how stupid of me. Anyway, they said they will sent an OTP to my phone, I got it from the number that chase uses. They went ahead and asked a couple more security questions that I’ve never heard of before from any bank or credit agency. They were questions like which of the following professional licenses do you have. I just answered none of the above for both. That was all I gave, no account number or SSN.
Then what’s weird is, they told me there’s a zelle transfer that they want to confirm. It’s to someone I’ve never heard of, definitely did not make the transfer. They then said I transferred to that person on 1/24. Which I did not, also confirmed on my account. So I asked which account was the transfer going out from, they said the last four of an account that I do not have.
After I mentioned that I don’t have that account, they paused a while and said this person of the same name was born in the 1950s. And after I confirmed that I wasn’t born in the 50s, they told me they probably called the wrong person with the same name, and hung up.
I got a little worried and called the number on the back of my card. The rep confirmed that no other reps had access my account. I changed my password and just put it all behind me.
But today something happened that got me worried again. My online shopping portal (MyPoints.com) account had unauthorized redemptions of $100 in paypal and $100 in footlocker gift card. Both PayPal and GC were sent to my account though. I dug back and found out that the redemption was on 1/28 too. The call was around 11am, and points redemption was 9:30pm.
I am just very paranoid now. I don’t know if I am actually getting hacked or not. If it’s just the shopping portal I get it. I used an easy password for that and no 2FA etc. I just hope my bank account is safe.
[deleted] t1_j6mbtks wrote
[removed]