Earlier today I had a telephone call from “xxxxxxx” at a large High Street bank. I was busy, so they left an answerphone message.
**They asked me to call them back on a mobile phone.**
I called the bank asking them the question, “do you think that this way of communicating is secure?” They confirmed that the mobile was an “official phone”, and that “from their viewpoint” everything was OK.
A couple of issues spring to mind. Banks are always saying that they will “never ask us for our details by email”, **but **they expect us to call a mobile phone number and **trust the person **at the other end. The banks deem that this approach to physical security is acceptable. I don’t think it is.
I will be writing to the bank, and it will be interesting to see what they have to say.