Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

The signin 2SV SMS verbiage used by Chase is: "Chase: DON'T share. Use code 12345678 to confirm you're signing in. We'll NEVER call to ask for this code. Call us if you didn't request it."

I assume in the case where the customer initiates the call and support is verifying their identity via SMS, they use different text (i.e. not "to confirm you're signing in"). Otherwise, that'd be pretty ridiculous.



found today’s optimist, congrats you win one warm fuzzy feeling.

the verbiage is the same.


I think I at one point ran into this with Chase and the verbiage was not the same. Are you speaking from experience?


I am; I seem to recall it was Chase (and I do have a Chase account) but it could have been another bank or financial institution.


"Extraordinary claims require extraordinary evidence."

My reply involved the effort of sending a test message from my Chase account, to capture the exact text used. If you want people to engage with you in good faith, you should put similar effort into your replies, rather than just use Reddit-speak for "I think you're wrong."




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: