Tidal - potential scam?

Actually, just spotted there is a 'link' embedded in the email, and so I guess this makes it more likely that it is a scam.

easy - just log onto your Tidal account directly from a web browser by entering the address manually into the browser  and see if there is any message for you in your account  - don't click on any links from the email. No I have not received such an email from Tidal

S

Simon-in-Suffolk posted:

easy - just log onto your Tidal account directly from a web browser by entering the address manually into the browser  and see if there is any message for you in your account  - don't click on any links from the email. No I have not received such an email from Tidal

S

 

HI Simon,

Yes, I will do so when I return home to my main PC. I avoid using my iPad for anything relating to significant accounts or online banking.

I was immediately pretty sure that this is a scam, and will report back when I check it out. The email is very convincing indeed, looking exactly like genuine emails I have received from Tidal, and even including a number of Tidal playlists.

I thought that because the email is so convincing, it might be worthwhile posting a warning on the Forum just in case anyone is careless and logs in without thinking too much about it. Pretty unlikely, I'm sure, but you never know.

If you have a Windows PC, you can "hover" over the link in the email and see where the link takes you, without clicking on it.  Maybe you can do that with Apple too, but I'm never too happy with the way that Apple chooses to hide the workings of URLs etc away from users, in iPads and iPhones at least.

best

David

Now back home and have just logged into my Tidal account safely - something I don't think I have done more than once or twice since initially subscribing, and so the layout of the website and account area is pretty new to me.

Having navigated into my account via the 'Settings' icon, I see that there is a link under 'Manage subscription' entitled 'Update your subscription'. Is this a link that is always there in case someone needs to update their subscription, or is Tidal genuinely asking me to upgrade my subscription details? I don't see anywhere where messages might be displayed.

I too have received this email and, like you, thought it smelt of a scam.  Anything that asks you to click on a link in an email and provide payment details is almost guaranteed to be a con.    

I've logged into the Tidal website and there's nothing on there to indicate that this email is genuine.  I suppose we ought to contact their customer services to warn them about this phishing ' attempt as no doubt somebody will fall for it!

Thanks for replying.

I have reported the scam to Tidal customer services, and have attached a copy of the email in question, although I am not sure what (if anything) they will be able to do about it.

However, if a number of people have received the email, and I am sure it will be widely distributed and not just targeted at Nic and myself, then it might be worthwhile Naim posting an official warning on this forum. The email does look very genuine indeed, and much more professional than most of its kind. 

Well,

It appears that the email was genuine.

I received a response to the email I sent to Tidal Customer Support reporting a potential scam. The customer support rep made no comment about my fears of a scam, but simply told me that Tidal is indeed changing its payment system, and requiresall clients to update their payment details. They are offering 60 days free as compensation.

I guess everyone who subscribes to Tidal will eventually receive a similar request. I do still feel a little uneasy about this though.

While the method to inform customers may be lacking, there are genuine circumstances where this is necessary. Transitioning payment providers can involve several steps and can necessitate PCI-compliant ways of moving credit card information between providers. Often, if this is not feasible/available, requiring the owner of the credit card to re-enter details becomes the remaining path to securely capture the relevant payment method.

-Mark

Tidal customer services need a kick up the backside then!  The correct way to do it is to email customers and ask them to log into their account on the Tidal website to re insert payment details NOT click on a link in an unsolicited email that addresses them as 'Dear Customer'.  The major banks, Apple, Amazon etc spend a lot of time and effort trying to stop 'phishing' scams by telling customers to never click on an unsolicited email link and enter payment details but to always go via their website.  I'm very surprised that Tidal don't realise that it looks like a classic 'phishing' email and not surprised that most of us would be suspicious!

Nic-collins posted:

Tidal customer services need a kick up the backside then!  The correct way to do it is to email customers and ask them to log into their account on the Tidal website to re insert payment details NOT click on a link in an unsolicited email that addresses them as 'Dear Customer'.  The major banks, Apple, Amazon etc spend a lot of time and effort trying to stop 'phishing' scams by telling customers to never click on an unsolicited email link and enter payment details but to always go via their website.  I'm very surprised that Tidal don't realise that it looks like a classic 'phishing' email and not surprised that most of us would be suspicious!

 

Indeed!

I am equally surprised.

I assume that the reply I got (when I contacted their Customer Support people directly from their website) is genuine, and their website itself hasn't been hacked. I think I'll hold off for a little bit just in case.

Hmack posted:

I assume that the reply I got (when I contacted their Customer Support people directly from their website) is genuine, and their website itself hasn't been hacked. I think I'll hold off for a little bit just in case.

If I were Russian hackers going after targets, I'd probably go after the Democratic National Committee or the campaign manager of an important candidate, rather than an elaborate scheme to (a) send out fake emails to Tidal customers plus (b) spoof Tidal's Customer Support service by hacking the link in the Tidal website.  "Just sayin'."

I don't know Bart - they have conquered the political battlefield in the US and with Trump now on their side, next step the World. Small steps at first, and then ........?

To be a little more serious, hacks can be carried out by 14 year olds (allegedly), and I wouldn't want to give any 14 year old unfettered access to my credit cards.

Never get this problem when buying cd's and vynal, sorry but perhaps its just one more reason to not bother with all this and just keep upgrading my turntable and the rest of my system. 

Wiltshireman posted:

Never get this problem when buying cd's and vynal, sorry but perhaps its just one more reason to not bother with all this and just keep upgrading my turntable and the rest of my system. 

People also commit crime in the physical world. It's perhaps happening to more in the digital world, however no reason to hide away. Just embrace and just apply new ways of protecting yourself......, you would also not put your purse on a table in a cafe....

Bert Schurink posted:

Wiltshireman posted:

Never get this problem when buying cd's and vynal, sorry but perhaps its just one more reason to not bother with all this and just keep upgrading my turntable and the rest of my system. 

People also commit crime in the physical world. It's perhaps happening to more in the digital world, however no reason to hide away. Just embrace and just apply new ways of protecting yourself......, you would also not put your purse on a table in a cafe....

You could just as well be scammed using a payment card in a shop, an ATM, an online store or bank as you could by using Tidal, so I I don't see any logic in that argument. Sounds a bit like keeping all your cash under the mattress.