|
|
Post by laverne on Jul 12, 2017 14:19:00 GMT -5
There is a financial organization of which I am a member (for years) who is upgrading their security. Among the multitudinous questions I have to answer (e.g. SIX security questions), they also want my email password. I feel this is not a legitimate request. Any thoughts on this, please?
|
|
|
|
Post by Jack Teems on Jul 12, 2017 17:44:30 GMT -5
I can't imagine why any reputable organization (or individual) would have any need for your email password. Run away - don't walk - from them.
|
|
|
|
Post by laverne on Jul 12, 2017 21:55:30 GMT -5
Thanks for your comments, Jack. This is a reputable nationwide organization. I almost couldn't believe they were asking for my email password. Of course, I wouldn't have to give them the right one -- and if they check it they would be violating my privacy ;-)
I have written them about this matter telling them I refuse to give out my email password. I'm awaiting their reply.
|
|
|
|
Post by teacherspet on Jul 15, 2017 18:54:03 GMT -5
To me this sounds more like a scam that is purporting to be the financial institution that you know. Wanting 6 security questions is possibly trying to get all the secret questions you may have used in the past. And no-one would have a need for your email password - as you say it would be invading your privacy if they used it. Will be most interested if you get any reply. I hope you have written to your institution directly and not by reply to the email sent to you.
|
|
|
|
Post by laverne on Jul 18, 2017 7:28:48 GMT -5
Thanks for your comments. This was, indeed, a fishing email that I received and fell for. My last week has been spent in damage control. I am not sure any information actually went to the perpetrator because my submit screen was rejected due to some fields not filled in. But, just in case, I have changed passwords, security questions, credit card, etc. Never thought this would happen to me!
The organization I contacted complaining about their "security questionnaire" were most helpful in setting things aright. Still, this was an unhappy learning experience!
Laverne
|
|
Peter
Software Review Panel
Posts: 174
|
Post by Peter on Jul 27, 2017 20:43:02 GMT -5
General rule of thumb: financial institutions, government agencies, etc. never send you email messages about such matters. Assume that any such request is spam, do not click on any link in the message, and delete it immediately.
Then, if you want to be sure, phone them and ask.
I am sorry to hear of your experience, Laverne. And am glad that you were able to recover. In spite of my high-sounding advice above, generally we trust people, so it is really easy to inadvertently fall into their trap. And, although they are scum, many of those people are professional criminals.
|
|
