- Southwest eyes Hawaii’s lucrative island-hopping routes by SFGate. Very interesting.
- Club Carlson for Business Ending. So I gave away two free nights. by Frequent Miler. If anybody else has any orphan business points they won’t use, feel free to give them away/trade them in the comments below.
- Citigroup’s Credit-Card Growth Plans Hit a Snag by WSJ. This move to interest free periods away from rewards was already known, but it’s crazy that they have sent out 1.9 billion mailers over the last three years through September. Citi are also trying to push their 22 month interest free period on the Citi Simplicity but one of the key factors is that balance transfer fees aren’t waived like other competitors.
- Danny Deal Guru shared this worrying letter from Citi. As I posted on Twitter that response isn’t good enough and I think it’s worrying that Citi employees have access to unrestricted payment data in the first place.
👀 what??? pic.twitter.com/nGah44jXqP
— Danny the Deal Guru (@dannydealguru) November 9, 2017
I briefly worked for Citi in the 1990’s. A guy on my team was arrested for stealing SSN’s and selling them to a friend.
My call to credit card goes to manila. There they ask me my SSN and mothers maiden name. That together with the hack from equifax means any dumb duck in Manila can call on as me to citibank.
I fought with some asshole on citibank and he kept saying they have strong security but can’t discuss it with. Again this makes me so mad at one of the parties in the Congress. The business friendly party.
Hahahahahaha
I worked for Citi until 2008. All of that information cited was available on the very first screen of their mainframe system accessible by practically the entire company. However, as with most computer systems, bread crumbs are left leaving a trail of everything thing you accessed. Just like stealing from Walmart, you have to be an idiot to try and do something like this. I have seen local police roll up several times to be escorted in to the building and arrest an employee. Happens more often than you would think.
Can confirm. Exact same set up by Chase, Capital One, and HSBC. CSRs can see all of your accounts tied to SSN (including REALLY old ones that’s been closed).
Sure, but if you’re accessing a customers data anyway then you could just write down their information and the breadcrumbs would just look like regular work.
The connections get made, eventually. X accounts with fraud all touched by X employee. I wondered why Citi released this information? Perhaps because the rep directly made the transactions? Id laugh if then venmo’d themselves. But employees stealing data, (trying to) profit from it, and getting busted is nothing new.
The wildest incident I recall was an associate in the card production area swiped a handful of card blanks. Funny enough the card production business was sold off to a 3rd party who now operates the detached building on site. Mitigating risks?
Yeah connections can get made if employees steal enough data, but if they steal less I’m sure they can get away with it. Seems strange to give them complete access to it when it’s not needed in most cases.