So I get an email @ my home account indicating a new account has been set up and I need to log in.
Quote:
An account has been created for you with the following details. You will be required to change your password on next login.
UserID:
Password:
For any issues, please contact [admin email or phone]
Use of email is inherently insecure. Confidential information, including account information, and personally identifiable information, should not be transmitted via email, or email attachment.The information in this email may contain confidential and/or privileged information and is intended only for the use of the individual/entity named above. Any disclosure, copying, distribution or use of this information is strictly prohibited. If you have received this communication in error, please notify the sender immediately and destroy any record of this email.
Citizens Bank, N.A. is an affiliate of Citizens Financial Group, Inc.
So immediately I am suspicious, but I notice there is no link supplied to click. I also notice that the username is my exact username with another English word appended to the end. FYI, my username is an extremely obfuscated string of semi-mnemonic words
I call fraud prevention and they tell me to ignore it that it is a fraud attempt and I indicated I'm curious how my username is there. She says everyone is calling in with that and I can change my username if I want from the website.
Late to work, I head out and working in IT, I'm thinking, there is no way this is possible without a leak of info from the bank.
I get home and look @ the source info from the email (not having deleted it as instructed) and the IP of the email is owned by the bank. I also see
Quote:
Received-SPF: pass (domain of citizensbank.com designates 12.154.167.142 as permitted sender)
in the tracking info.
So what gives. I'm not sure if I got more unnerved by getting such an email or unnerved that my bank has given me a 'story'. I don't blame the HD person, she is just reporting what she is told.
I think I'm taking this up with the bank, not appreciating what appears to be a problem not correctly identified.
As mentioned I work in IT so I am well aware of how 'problems can be identified' to others as to mask some misdeeds. (not coming out with cannons blazing) Perhaps higher ups don't really have the true story of what the issue was. I'd like to know
Just an FYI and rant for those who might have gotten the same email.
-T
Quote:
An account has been created for you with the following details. You will be required to change your password on next login.
UserID:
Password:
For any issues, please contact [admin email or phone]
Use of email is inherently insecure. Confidential information, including account information, and personally identifiable information, should not be transmitted via email, or email attachment.The information in this email may contain confidential and/or privileged information and is intended only for the use of the individual/entity named above. Any disclosure, copying, distribution or use of this information is strictly prohibited. If you have received this communication in error, please notify the sender immediately and destroy any record of this email.
Citizens Bank, N.A. is an affiliate of Citizens Financial Group, Inc.
So immediately I am suspicious, but I notice there is no link supplied to click. I also notice that the username is my exact username with another English word appended to the end. FYI, my username is an extremely obfuscated string of semi-mnemonic words
I call fraud prevention and they tell me to ignore it that it is a fraud attempt and I indicated I'm curious how my username is there. She says everyone is calling in with that and I can change my username if I want from the website.
Late to work, I head out and working in IT, I'm thinking, there is no way this is possible without a leak of info from the bank.
I get home and look @ the source info from the email (not having deleted it as instructed) and the IP of the email is owned by the bank. I also see
Quote:
Received-SPF: pass (domain of citizensbank.com designates 12.154.167.142 as permitted sender)
in the tracking info.
So what gives. I'm not sure if I got more unnerved by getting such an email or unnerved that my bank has given me a 'story'. I don't blame the HD person, she is just reporting what she is told.
I think I'm taking this up with the bank, not appreciating what appears to be a problem not correctly identified.
As mentioned I work in IT so I am well aware of how 'problems can be identified' to others as to mask some misdeeds. (not coming out with cannons blazing) Perhaps higher ups don't really have the true story of what the issue was. I'd like to know
Just an FYI and rant for those who might have gotten the same email.
-T