Saturday, April 20, 2013

B of A's Bot Chat Specialist

I got an odd sort of maybe-phish the other day in the name of Bank of America.  The phish part was that they warned me about trouble on my account.  The odd part was that they did not ask me to "reply to this message," and did not ask me to "call this number"--only to check in st the B of A web page.  

I did check in at the web page,, and here is the odder part--nothing seemed out of line.  No blockage on the account, entries looked all right, blah blah.  So I popped over to the B of A customer service and fired up internet chat and--well, I'll spare you the details but I told my little story and they started firing back a list of warning signs for possible phish.  Whereupon I guilelessly typed
That is great, but I'm not 100 percent sure you are hearing me. Note that this email did not contain any of the obvious phish tags--.
And that was when it finally sank in on me: of course they weren't hearing me because there was nobody there.  Talking to a bot about a phish. Welcome to the new world.

Update  A friend says--oh, there was somebody there all right, just trained to talk like a bit.  Could be.

Afterthought.  I realized a little later that there was an obvious giveaaway in the email--came from "banksofamerica," i.e., plural instead of just one bank.  But I still don't know--what, exactly, was the scam?

1 comment:

Ken Houghton said...

Two possibilities: (1) there was a link claiming to be to the BofA website that you just didn't click or (2) the email was supposed to put one of those tracking devices on your computer that follows the characters you type and "records" them.

In a related comment, if you can avoid dealing with NCNBofA, your life would probably be the better for it. But that may be difficult.