No.
I've had calls from organisations I've dealt with on my previous phone
line. I absolutely refuse to divulge information over the phone to any
unsolicited callers. The sole exception being the doctors surgery and
they only ask health questions about current conditions.

Last time I got an unsolicited call it was from my ISP/phone provider.
I told them to write to me. Then I went on the forums and sent out a
warning about a possible scam. BE no longer contacts people by phone
at home.

So they get their targets bank account number, address and phone
number. ISTM they would need to target a hell of a lot of people to
get all those details

Why? If you are at the bank then they already have secure terminals.

Or do you mean when phoning up and the toy card reader gives a one time
secure code that confirms you are in possession of the reader, card and
PIN. Note that the code it gives is longer than your PIN and related to
it only in the sense that it is a cryptographic answer of "YES".

I prefer HSBCs Vasco login security dongle - much less faffing about.

In that case you reveal your PIN every time you enter it via the
keypad. You have no idea whether the number is being stored
except when you enter it onto a keypad
I'm the same. I always ask them to write to me then put the phone down

The last time this happened to us, they asked for our password. DH gave
them a telling off and suggested they ask for letters within that password.

It is a lot easier if you already know the name of your target which
seems the most likely way it was done in this particular case.

If he was ex-directory then there *is* a bit more to it.

There are various lookup services for a start (192.com ?). This was
clearly an organised scam, so possibly they bought (access to) a few
marketing databases, which happened to combine the address, the name and
the phone number.

As I stated, just because someone calls me up, and knows my name, doesn't
mean a thing to me. That is the point at which the story posted by the OP
and myself depart company. He believed it was his bank, because they
happened to know his name.

Sadly this sort of scam is just not going to go away. We are being
required to throw around so much personal data, that is being stored all
over the place, it should come as no surprise people can have so much
information on us. Photocopied driving licenses, passports, birth
certificates, utility bills, council tax bills, tax forms ... I have been
required to provide all of this over the years. It only takes sloppy
security in one location for someone to be able to see my bank details,
my passport, and my council tax - more than enough to put together a
convincing scam. However, in the original story, then no matter how
convincing, I would not have typed my PIN in, regardless of what the man
on the phone said. That is because my bank has repeated told me they will
never ask for my PIN, and anyone who does ask for it is not working for
them. They have it in big bold letters when they issue a card. And when
you register for online banking, it's printed on the letter they send you
with some of the details you need.

Yes, the original story does sound scary .... but the whole scam hinged
on getting the PIN. Without that, it would have failed.

Just as an aside (although a few sites do just ask for a "memorable
word") it's never a good idea to *actually* use your mothers maiden name
as the answer you give, when a site suggests it as a secondary challenge.
Because that's just too easy. Just use a word you can remember.