Forum: Scammed of $100,000, but fault is not mine alone

[yokine3a]

according to @gravity_infinity he say change limits no need OTP. You set lowest also no use

Yes you are right, changing limits on pc browser no need otp.
Guess safest is still don't click any links on sms & email.

 

[Tuckie]

Only open your bank app to see what irregularities in your account lei……
Don’t any how click on the link. You not playing fishing game or shooting game………..

don’t alway wait for people to spoon feed you like giving a link and you click on it for convenient.

Tell that to the folks who got scammed.. I mean that’s how they kana

 

[Jo13jo]

outage but no money was lost

2 days critical system down, fail rto gaolat gaolat lor.
Means as long as no marnee lost (how about opportunity cost), the MAS guidelines are tissue paper only?

 

[gravity_infinity]

Yes you are right, changing limits on pc browser no need otp.
Guess safest is still don't click any links on sms & email.

but thats shouldnt be the way i feel.

 

[kimsix]

Those govt supporters got selfish, arrogant mentality, like to talk lanjiao wei.

We must have independent analysts to find out the problems for banking scams instead of letting govt covering up for banks and not taking responsibility

even our dragon lord data got leaked but still meek like a mouse

really need to give sharp elbows and knees to fug those cb india and Atb and jhk scam centers leh!

but then again...our own internal infra ....how dependent are we to foreign talents...really sad case.

 

[gravity_infinity]

even our dragon lord data got leaked but still meek like a mouse

really need to give sharp elbows and knees to fug those cb india and Atb and jhk scam centers leh!

but then again...our own internal infra ....how dependent are we to foreign talents...really sad case.

our cyber security really jialat

 

[tanakow]

I have never heard change limit no need OTP.

if that’s really the case then what’s the point of the limit? got limit no limit no diff

Different banks have different policy. For DBS, last time need token to raise limit. Now i don't know. For OCBC, i think don't need. But they will send you a SMS message to tell you that you have changed the limit.

 

[frigatex]

OCBC has no way of knowing which transaction is suspicious or not. What happens is that OCBC has been presented with the correct authentication and authorisation for the transfer and OCBC has acted on the authorisation.

People who still think that it is OCBC's fault should avoid online banking or anything involving financial online because they simply does not understand the whole online thingy work.

Don't think anyone doubts that the victims are at fault. Though the fact that ocbc are making changes to their processes now show that there were areas that could have been strengthened. Also, losses of the victims could have minimised if there was an avenue for rapid response. I've had two instances now where the SMS notification of changes to transaction limits were delayed by hours.

 

[harbinger255]

yes exactly.

@harbinger255 @Capitalist

what are you contributing than just mocking and being patronising to victims? everyone will have times of inalertness or too busy. this case is not like say hyflux or dbs bonds when those 'victims' went in with greed knowingly but act blur later.

when it is already shown ocbc do send official sms using bit.ly...

look at their urls even, is there even a 'standard' url?

OCBC Personal Banking | Accounts, Cards, Insurance, Loans & More

OCBC Bank Singapore offers a full range of products & services for all your personal banking needs. Manage & grow your finances with OCBC. Learn more.

www.ocbc.com

OCBC Bank

internet.ocbc.com

ocbc already change protocols after this event, meaning there was weakness..

victims cant even quickly disable or recall the funds.

OCBC S'pore scam victims, many who lost life savings, slam bank for underwhelming response

Among other grievances, victims were angered by OCBC’s perceived nonchalance and ineptitude when they approached the bank for help.

mothership.sg

When 36-year-old homemaker, Denise (not her real name) and her husband realised that they may have been victims of a phishing scam, he immediately called the OCBC hotline to try to get the bank to stop the scammers in their tracks.

However, instead of getting a response, Denise’s husband was put on hold for over 20 minutes.

During which, he received more SMS notifications that his OneToken had been activated.

The OneToken is OCBC’s digital authentication tool for internet transactions.

He was also notified that his transaction limit was increased from S$5,000 to S$50,000.

Unable to get through, Denise’s husband carried on with his other tasks.

Two hours later, he received another SMS suddenly informing him that S$15,718 had been transferred out via PayNow.

Horrified, he called OCBC’s hotline again, but was put on hold. While waiting, he received an SMS that another S$2,400 had been transferred out.

Just one of the example reported.....

Ah too busy to continue arguing about this.... by all means continue to push the blame to others... Win a few darwin awards while you're there

 

[tanakow]

Don't think anyone doubts that the victims are at fault. Though the fact that ocbc are making changes to their processes now show that there were areas that could have been strengthened. Also, losses of the victims could have minimised if there was an avenue for rapid response. I've had two instances now where the SMS notification of changes to transaction limits were delayed by hours.

I think the SMS notification delay is an outlier. Normally, i get it within a short time, in the order of seconds. But having said that, once the victim realises he/she has been scammed, it is too late to recover the fund transferred.

If customer think that any transfer should be delayed for a few hours, then they can bank at a bank which can comply with this requirement.

Eg when i transfer money from a local Citibank account to a New York citibank account, there is a holding period of 30 minutes.

 

[Strikk]

Its a grey area. Ocbc wasnt hack and the money wasnt lost due to a hack. No way you can prevent anyone from setting up an official looking website and also to have them taken down fast.

There should be hard limit for about a thousand dollars for internet transfer to any bank and if more is required, only user specific account that require inperson or facial ID.

It boils down to the bank if they bother to spend and brainstorm on ideas to improve non-IT hack scams. Some are smart enough to know it is a scam but the blur cocks pioneer generation like my dad are not.

 

[tanakow]

OCBC S'pore scam victims, many who lost life savings, slam bank for underwhelming response

Among other grievances, victims were angered by OCBC’s perceived nonchalance and ineptitude when they approached the bank for help.

mothership.sg

Just one of the example reported.....

Ah too busy to continue arguing about this.... by all means continue to push the blame to others... Win a few darwin awards while you're there

Everybody knows that calling a hotline can take very long unless you are a private bank client. The husband should have gone to the bank. But the money has already been transferred out of the account and it is probably too late to recover the fund.

 

[harbinger255]

OCBC S'pore scam victims, many who lost life savings, slam bank for underwhelming response

Among other grievances, victims were angered by OCBC’s perceived nonchalance and ineptitude when they approached the bank for help.

mothership.sg

Just one of the example reported.....

Ah too busy to continue arguing about this.... by all means continue to push the blame to others... Win a few darwin awards while you're there

Then in that 2 hours, he nonchalantly continued with his task when he could have 1) rush down to a bank 2) continue to hold the line 3) Force an account lock by entering a wrong password 3x

 

[harbinger255]

Everybody knows that calling a hotline can take very long unless you are a private bank client. The husband should have gone to the bank. But the money has already been transferred out of the account and it is probably too late to recover the fund.

2 hours.... TWO HOURS..... after getting all that alarming notifications... I will be pissing my pants already in 30min thinking all my money is already gone

 

[fake_oranges]

or bi good

looks like sinkies are not so smart vs foreigners

 

[frigatex]

I think the SMS notification delay is an outlier. Normally, i get it within a short time, in the order of seconds. But having said that, once the victim realises he/she has been scammed, it is too late to recover the fund transferred.

If customer think that any transfer should be delayed for a few hours, then they can bank at a bank which can comply with this requirement.

Eg when i transfer money from a local Citibank account to a New York citibank account, there is a holding period of 30 minutes.

Yes I was saying in a previous post, most other SMS (for payments etc) come promptly. But the SMS for this specifically (changing limits) came late for two separate occasions. 10th Jan was delayed by 5 hours, today delayed by 3 hours.

 

[Zinna]

I just find it funny you can just raise the limit to the max, then immediately transfer out all the money in the account to a foreign bank account without getting flagged by the Bank as suspicious activity

 

[FT_FTW]

You are obviously not very smart or you are an IB. I would not want to say that you are probably lowly educated as some lowly educated can be quite smart.

A fraud has been committed and yes, it is likely the fault of the victim. Does that mean that the G or SPF don't need to investigate? So if you kill your wife because your wife cuckolds you, the SPF don't need to investigate because it was her fault?

It just shows how 'naive' you are to bring in the Government b@stardisation of the CPF scheme including CareShield, Medishield and CPF Life which are not relevant in this thread.

calling me not smart and my wife being unfaithful is not how u talk.

u can argue for all u want. No one is going to baby sit sinkies for their stupidity.

 

[JustKidding]

Smart nation indeed

 

[Level42]

Then in that 2 hours, he nonchalantly continued with his task when he could have 1) rush down to a bank 2) continue to hold the line 3) Force an account lock by entering a wrong password 3x

Brilliant idea! If the scammer change the password, should attempt multiple failed logins until the account is locked. Otherwise I prefer to take back control of the account.