This morning I made six identical small transactions on a credit card in the space of about ten minutes. There was a good reason for it, but I thought there was a good chance that the credit card company would flag it as suspicious, and I expected that my phone would ring.
About five minutes later, I got this email:
URGENT: Confirmation of Recent Transaction
Seeing as how I'm a suspicious netizen, I ran this through all of the sanity checks I could think of-- they provided me with accurate information about the transaction, sent it to the email address I would expect, and the links went to my bank's website. I clicked "Transaction Authorized", and all was right with the world. (Final sanity check: the destination site didn't ask me for any information.)
I *think* I like the fact that they're using email for this, but I wonder how many of these get flagged by automated systems as phishing attempts? Does this make people less suspicious of phishing?
|comments: Leave a comment|