Post ARK2o6U3rxN8T4e1PE by tprophet@defcon.social
 (DIR) More posts by tprophet@defcon.social
 (DIR) Post #ARK2o6U3rxN8T4e1PE by tprophet@defcon.social
       2023-01-05T02:44:56Z
       
       0 likes, 0 repeats
       
       Was successfully phished into changing a bank password. Highly convincing email. Opened a new browser window, went directly to my bank's website, changed the password, was glad that hardware token 2FA locked out any "move money" functionality.Went back to the email. Noticed change password link directs to some line noise domain. Oh.
       
 (DIR) Post #ARK2o6yC3vTVyWk5NA by adam@hax0rbana.social
       2023-01-05T04:55:05Z
       
       0 likes, 0 repeats
       
       @tprophetI thought I fell for a similar thing with my investing account. It wasn't a password reset though. They said my account was closed and then asked for my account number, DOB, last 4 of my SSN, etc. After I entered them I saw the URL was not what I expected.Turned out it was legit, just another domain they owned. I converted my account from one type to another, so the old account was in fact closed. Gave me a good scare though.Stay on your toes everyone.