Within the last hour I received a call from a woman trying to scam me. I instantly suspected her based on her tone (she seemed extremely fed up!) and hung up shortly after, however what almost got me to believe her story was that at the same time I received a text from +44 800 802 1281 - which is the number on the back of my Monzo card. She told me to check the number on the back of my Monzo card and it will match the number the text came from - which it did.
The scammer was calling me at the time from a very similar number - 0800 802 1218 (last two digits switched when comparing to the monzo number).
Whatâs confusing me is how this text came from a Monzo number? I understand you can spoof numbers, but I didnât realise you can spoof active, registered phone numbers? Is this possible and the way they have managed to make a text seem like its coming from an official Monzo number?
I also just wanted to share the scam phone number (0800 802 1218) Incase anyone else gets a call from this number.
Iâm not 100% sure how itâs done, but it is possible to spoof registered active numbers. My dad (whoâs a bit paranoid about people hacking into his phone etc) showed me how it was done. Iâm not 100% sure what he did with his phone, but managed to spoof a phone call. So the whole caller ID thing was my mum, but I could physically see him in front of me calling me. Iâm sure itâs possible to spoof texts in a similar way.
In this situation, and always if you get a call from Monzo (or any other bank etc) that isnt pre arranged and known about, hang up and call them yourself and explain, and apologise if they say it was them.
Iâll definitely keep an eye out for that number in case they call me; thanks for that!
Simplest thing to remember is that Monzo will not phone you out of the blue. If you get an unexpected phone call from âMonzoâ, just hang up, donât engage.
And even if Monzo were to phone you out of the blue, they will have no issue if you tell them youâre going to hang up and call them back on the number on the back of the card.
Scammers likely will, real banks will not.
3 Likes
Anarchist
(Press âHelpâ search âContact usâ or email help@monzo.com or call 0800 802 1281)
5
Iâm not sure there would be much point in spoofing inactive numbers.
Well yes, if you do a google search for a number it generally comes up if the number has been used for scamming on forums etc. I would assume a way to circumvent this would be to regularly spoof inactive numbers so youâre constantly calling people from new, unused numbers.
Itâs easy to see how you can be pressured into moving money.
Itâs so precious to us.
I once had a card company call me out of the blue about fraud. He provided his name and I called the bank from a different phone and it was genuine. I just wasnât happy in the first call to talk about my money!
Thank you so much for this! I have just received that call. I put the number into google and your post came up. As soon as I confront them as being fraudulent they hung up the phone. It was scary how much personal information they had gathered on me to try and convince me it was the real deal. Thanks again for your post. Saved me!
If it happens again, just @ me and Iâll fix ASAP if Iâm online.
Edit: I think flags take longer to resolve - messaging or @-ing is the best way to get a quick response from me, @SouthseaOne, other Coral Crew or the Monzo team. (Oh, the @ Coral-Crew tag still doesnât work for me, so donât rely on that!)
HSBCâs genuine fraud department has rung me up before.
A man with a strong Indian accent called me out of the blue, identified himself as being from HSBC and told me that my account had been frozen and I needed to verify my identity with him to get everything unblocked⌠now I donât like to think that Iâm a prejudiced person, but I was 99% certain this was a scam.
Called up HSBCâs official number and was told it was real and my account had indeed been frozen by their fraud team (mistakenly). Given how rife phishing call scams are at the moment, I think itâs absurd how (some) banks still follow the practice of calling up customers and requesting sensitive info⌠when thatâs in direct contradiction with basic security advice!
I was in town at the time of the first call so I thought that Iâd actually visit the local HSBC branch and check with them since itâd be the safest/easiest thing to do, but the staff there said they couldnât help me and I needed to deal with the fraud team in India (whom Iâd hung up on earlier)!
You canât assume that people will be aware of âwell knownâ things as a security measure though. For a start âbeing awareâ is completely subjective and, as people have pointed out, different banks and businesses have different methods and practices - some do and some dont call, some do and some dont text etc.
I dont think there is anything wrong with asking/pointing out things and then letting people help out or gain information (as @NeilS has done) via the official forum, rather than assuming everyone just knows the âwell know thingsâ.
And the account freeze was triggered by a purchase of Bitcoin I had fairly recently made (so perfectly understandable considering this was quite a few years ago). Turned out it had never actually gone though (theyâd blocked the payment), and I never bothered going back and redoing my purchase⌠which really sucks considering the value that purchase wouldâve had now!!
