I haven’t had much time to write here lately, but today I noticed something funny (maybe). I came across this website: bankstatementkit[.]com
It reminded me of a website from many years ago that allowed users (who weren’t too bright) to check if their credit card had been compromised, obviously by asking them to enter all their card details.
Today’s site, on the other hand, lets users upload their credit card statement as a PDF to get an Excel file in return. At the bottom, they promise to be honest, not to save anything, and to comply with the GDPR. That might even be true, but I’ve never seen a criminal website admit it publicly.
I have no reason to believe that this website isn’t a legitimate business. Its aims are, in my opinion, so absurd, and the idea that someone would upload their own bank statement is so ridiculous that it leads me to believe there aren’t actually any criminals behind it.
If it’s a legitimate business, I wish them the best of luck. If they’re criminals and manage to get their hands on someone’s data, we’ll be able to say that, once again, it’s not just the criminals who are bad, but the users who are stupid, too.
Emiliano Carlesi's blog 