Originally Posted by
WhateverDude
Somebody could pretty easily hack an e-mail and ask for a copy of a statement to be sent to some nefarious organization, thus obtaining your account numbers, etc. Seems like the bank is following sound security practices. Frankly, I'd be pi$$ed if my bank would fax a bank statment to any fax # without my hard signature on file.
Although i enjoy it when credit card companies have lax procedures, it's very much the opposite for my bank.
They could have emailed her using the email address she had on file OR just called her back on her own landline phone. She WAS on the phone with them, after all. At what point does security become ridiculous? After all, she was dealing with her own credit union - not Chase or B of A.
A phone call should have been enough to verify the email. Do you really think the scammers did a home invasion and had her tied up in the closet while waiting for her phone to ring? And they could have forged her signature, too. At some point, it's silly to insist on a level of security that borders on paranoia. Most security breaches are inside jobs anyway and you can't do much to prevent those other than do a better job of screening employees.