December 24, 2024

Royal Navy engineer Aaron Gallagher was scammed out of £10,000 – and NatWest told him ‘not to worry’

Gallagher #Gallagher

a group of people posing for the camera: Aaron Gallagher had the money he was saving for a house deposit stolen (Photo: Aaron Gallagher) © Provided by The i Aaron Gallagher had the money he was saving for a house deposit stolen (Photo: Aaron Gallagher)

Aaron Gallagher panicked when he received a call on his mobile from a woman claiming to be from his bank NatWest, telling him his money was at risk from fraudsters.

She pushed him to transfer his £10,000 savings urgently from his two bank accounts into a new ‘safe holding account’ she had set up.

Immediately suspicious, 23-year-old Aaron felt reassured when the professional-sounding caller pointed out the number she was calling from showing on his phone was the very same as the number on the back of his NatWest card.

a man and a woman posing for a picture © Provided by The i

Aaron, from Skelmersdale, Lancashire, was told by the scammer that he had clicked on a dodgy link online and malicious software had been put on his phone allowing fraudsters to access his bank accounts.

Shadow of someone putting coin into piggy bank and shadow of hand about to steal it. © Provided by The i Shadow of someone putting coin into piggy bank and shadow of hand about to steal it.

She said NatWest had noticed two suspicious transactions carried out far from where he lives, and that the malware was blocking him from seeing it on his online banking.

“She was very convincing,” he said. “She asked me security questions just how a bank always does and there was background noise like she was in a call centre.”

a man and a woman posing for a picture: Aaron pictured with his girlfriend Rachael (Photo: Aaron Gallagher) © Provided by The i Aaron pictured with his girlfriend Rachael (Photo: Aaron Gallagher) ‘She was very convincing’

She asked me security questions just like how a bank always does and there was background noise like she was in a call centre

Aaron Gallagher

The scam caller told Aaron to transfer £700.05 from his NatWest account and £9,274.05 from his Monzo account, which he was told had also been compromised, via a web link that looked genuine and which he received in an email from an address imitating the bank’s.

Shortly after he sent the money, the call ended “mid sentence”.

Immediately suspicious, Aaron called NatWest directly and was told by a genuine NatWest employee that he should wait for the caller to ring back and then follow her instructions.

“She told me not to worry,” he explained. “She said, well she’s calling you back, she may just be on a break or speaking to another customer. You’re best waiting for her to call you back.

“I knew I’d called the real NatWest number and I’d been through all the options and security and when someone at NatWest was basically saying this was genuine I thought it must be.”

But no call back came, and Aaron realised his hard-saved deposit had been stolen, leaving his dream to buy his first home with his girlfriend Rachael in tatters.

He called his bank again and this time a NatWest employee told him he’d been scammed.

Aaron, who works for the Royal Navy as a weapons engineer, said: “The fraudster even told me to max out my overdraft and I was literally left penniless. I felt sick when I found out I’d been scammed.”

After i got on the case, NatWest admitted the blunder, accepting their employee should have recognised the customer had been the victim of a complex scam sooner and saying it has now invested heavily in enhancing security.

A spokesperson said: “We are sorry about the level of service that Mr Gallagher received from NatWest, we have apologised and offered him a refund. We recognise that Mr Gallagher has been the victim of a complex scam and that this has been a very distressing experience for him.”

Monzo also agreed to refund the full amount stolen.

Low customer refund rate

The number of impersonation scams nearly doubled in the first six months of last year, according to banking trade body UK Finance, with Covid seeing more customers use online banking and people’s vulnerabilities being exploited.

Aaron fell prey to what’s known as authorised push payment (APP) fraud, where customers are tricked into making payments to criminals. He was also the victim of a scamming technique called telephone number ‘spoofing’.

It’s extremely easy for scammers to modify the caller ID of a phone call using commonly available software to mimic the number of a real company or authority. In the telecommunication industry, the ability to authenticate the caller ID is globally recognised as a major unsolved problem.

Almost £208m was lost to APP fraud during this period and of this £73.1 million was refunded to customers – only a third of cases.

There is pressure on banks to do more to combat fraud (Photo: Sean Gladwell via Getty Images) © Provided by The i There is pressure on banks to do more to combat fraud (Photo: Sean Gladwell via Getty Images)

A voluntary code was launched in May 2019 that sets out standards for banks to follow regarding APP scams. But not all banks have signed up (currently nine banking groups have, including NatWest Group). And there have been calls for more consistent application of the scheme by banks, and for banks to focus on preventing scams happening in the first place, from the Lending Standards Board (LSB), which oversees the code.

Furthermore, the code includes a pot of cash available to compensate ‘no-blame’ cases but this is an interim funding measure, that has been extended three times, and now runs until the end of June 2021.

The Government has been under pressure to introduce new legislation for the long-term and figure out a sustainable funding solution, something which has understandably slipped down the agenda with the impact of Covid.

What to do if you are not sure if a call is genuine

Action Fraud, the UK’s national reporting centre for fraud and cybercrime, warned that “criminals are experts are impersonating organisations that we know and trust”.

A spokesperson said: “It’s important to remember if you’re contacted out the blue by someone purporting to be from a well-known organisation, asking for your personal or financial details, that this could be a scam.”

The organisation advises:

  • Hang up immediately as this could protect you and your money.
  • If you are suspicious of any communication you receive, contact the organisation in question directly through a phone number you’ve used before to check if the communication you’ve received is genuine. 
  • If you need to contact the organisation to check the call was legitimate, wait five minutes; fraudsters may stay on the line after you hang up. Alternatively, use a different line altogether to contact your bank.
  • You should also take care not to click on any links in unexpected emails or text messages as these could lead you to malicious websites after your personal and financial details.
  • If you think you’ve been a victim of fraud, contact your bank immediately and report it to Action Fraud online at actionfraud.police.uk or by calling 0300 123 2040.
  • Action Fraud will refer all fraud crime cases to the National Fraud Intelligence Bureau (NFIB). The NFIB is run by the City of London Police (which operates nationally).
  • For expert advice on how to get your money back if you’ve been scammed click here.

    Do you have a real life story? Email claudia.tanner@inews.co.uk.

    Leave a Reply