Holy shit: ING bank has a means of validating, through their app - so, a trusted, mutually authenticated channel - whether or not the person who has called you is -actually a bank employee-
"If you really have an ING employee on the line, the screen shows their name or their department name. Via the green bar at the top, you can go back to the conversation."
https://www.ing.nl/particulier/english/fraud-and-safe-banking/check-the-call
This is -beautiful- and I want -every- other institution to implement this, holy shit.
Fi, infosec-aspected /
npub1yh…tn7dy
2024-05-25 17:37:29
Author Public Key
npub1yh7qh8c7npgjestgtv23zvych4w824vdntjzc0axvdf0ns2pgp0q3tn7dyPublished at
2024-05-25 17:37:29Event JSON
{
"id": "a6eeb02729a7b491d8839588101bb6683838b0b3e9c436cab931b350accc7321",
"pubkey": "25fc0b9f1e98512cc1685b15113098bd5c75558d9ae42c3fa66352f9c141405e",
"created_at": 1716658649,
"kind": 1,
"tags": [
[
"proxy",
"https://infosec.exchange/users/munin/statuses/112502941227309863",
"activitypub"
]
],
"content": "Holy shit: ING bank has a means of validating, through their app - so, a trusted, mutually authenticated channel - whether or not the person who has called you is -actually a bank employee-\n\n\"If you really have an ING employee on the line, the screen shows their name or their department name. Via the green bar at the top, you can go back to the conversation.\"\n\nhttps://www.ing.nl/particulier/english/fraud-and-safe-banking/check-the-call\n\nThis is -beautiful- and I want -every- other institution to implement this, holy shit.",
"sig": "6c181c2e3b713ab81a8e0a77005d9a93c7270fa19c723c5466f6640a27e0879f451964c9109628075bb864ab4099771c7bd17afa542504bb7229fe0bb43d174f"
}