Over kl The Markup is an alarming story about a rash of phishing scams that has been targeted at concertmates for Postmates. Drivers receive phone calls from people who claim to be employees of Postmates, who encourage employees to provide login information – usually under the guise that it is necessary to keep a driver’s account in good condition or avoid allegations of fraud.
Once the scammers have received that information, they exchange the debit card information in the account – Postmates make weekly deposits of the employee’s earnings, but immediate transfer may also be requested ̵
The unknown call usually arrives right after an order. (Placing an order allows the perpetrators to easily reach their postal partner by phone.) Some scammers have gone so far as to involve restaurants in the scheme.
Drivers say Postmates is not doing enough to alert them to the phishing threat, which has only become more common during the COVID-19 pandemic. Scammers take advantage of how busy and hurried these concert workers often are, so the drivers ask for more guarantees in the app.
One suggestion is to automatically block a driver’s account when the deposit information changes, just to give a little more time to prevent a worker’s money from being sent. Another measure that could help would be a caller ID that clearly identifies when a call is coming from a Postmates customer account. Postmates has this support page to protect accounts, but several drivers told The Markup they had never seen it before.
Postmates says it has implemented two-factor authentication and can block payments if fraud is suspected. But drivers who have been affected by the scam say the company is difficult to reach, so they have little hope of recovering lost revenue. The whole story at The Markup is worth reading – and even more reason to tip well when you lean on the concert economy.