[jessaustin]

The typical customer got to the linked page by clicking a link in an email. After all, the use case is the customer not wanting the damned marketing spam. A financial institution should not be training its customers to enter account details into pages they got emailed to them.

I'm sure some customers would consider themselves sophisticated enough to "know" this is a "real" Citi page, but if they were actually sophisticated they wouldn't touch this with a ten-foot pole.

[dec0dedab0de]

Sorry, my edit must have came in while you were typing this.

[jessaustin]

No worries! My typing speed varies. I'd suggest an additional edit, however. "The only problem" is a big enough problem to vitiate any benefit Citi were attempting to provide here. I suspect this page will disappear as soon as the home office sees it.

[dec0dedab0de]

It will only disappear if someone actually understands the issue. A post that consists of someone linking to a form probably won't educate them. Every interaction with a bank starts with them asking for this type of info. The real issue is them soliciting it via a link in an email, if that is actually what they are doing.

[jessaustin]

I'm pretty sure that Citibank International have someone on staff (perhaps a secretary? maybe even a VP...) who would immediately see the problem with this page. It's been some time since I banked online with a "big" bank, but do they routinely ask for one's account number in order to get off spam lists?