Am I being hopelessly naive

  Forum Editor 18:01 29 Sep 2018
Locked

In continuing to do all my banking online, using my tap and pay cards to an increasing extent, going to Amazon first whenever I want something and hardly ever using cash?

Or am I simply living in the real world, secure in the knowledge that between them the banking institutions and the government will sort it all out?

I was a recent victim of card fraud - someone used my card details to buy goods from two different companies online. I spotted the first transaction when I checked my account one evening. Then, and hour later, there was the second transaction.

Worried that someone was going to systematically empty the account, I transferred the money online into two other accounts - at least I was safe until I could talk to my bank the next day. They reacted promptly and stopped the card. Then they reimbursed the account. A new card came pretty quickly, and things returned to normal.

A month later, I received a letter from my bank, asking me if I would peruse a copy of the transaction details provided by one of the sellers and give them my comments. There was a delivery address, there was my card number, and there was the purchaser's name....except it wasn't mine. The fraudster hadn't bothered to use my name when asked for the name on the card, but the payment had been authorised.

How can that happen? I asked that question when I responded, but so far I have heard nothing further.

It seems to me that we have a long way to go if payment processors don't even check that the 'Name on card' information is correct.

  wee eddie 19:08 29 Sep 2018

We have not yet got over "the best thing since sliced bread" stage.

I think that the future will need to be "fixed content" Bank Accounts, because "on-line" security is impossible.

  Aitchbee 19:29 29 Sep 2018

When one hands over total control of one's money with ' blind faith ' to an online computer banking system then one must expect there to be ' unforeseen ' detrimental consequences. That's basically what wee eddie has just said, btw.

  Quickbeam 20:20 29 Sep 2018

"at least I was safe until I could talk to my bank the next day."

No 24 hour number?

  LastChip 21:46 29 Sep 2018

I will never use a mobile phone for monitory transactions, only my desktop computer, which only me and rarely my family use.

Likewise, I never save a card on a companies system. Yes, it means I have to type in the details each time, but there's been systematic data loss by major institutions and I don't see that stopping any time soon.

In my book, the fewer people that have access to my card details, the better.

  Belatucadrus 22:55 29 Sep 2018

Some years ago I had a fake Paypal bill appear on my credit card. The response from Paypal was " Oh yes we spotted that and thought it was fraudulent ". Which begged the question If you thought it was fraudulent why the hell did you put it through ? They never did get around to answering that one.

  wee eddie 23:53 29 Sep 2018

I don't think that you are being hopelessly naive.

However I do believe that, as an early adopter, you have swallowed the Marketer's guff and not understood the risk.

From the point of view of Financial Software, we are still in the equivalent of the Wild West

  BT 09:33 30 Sep 2018

The Spammers can be very persistent.

After my recent problems with Amazon which we discussed on here I'm still getting Emails supposedly from Amazon which are saying that my CC company has refused payment and are asking me to supply CC details so that payments can be taken. As Amazon accepted that I didn't order the items and have agreed to accept and refund the returns the emails are obviously false. Also the CC company has removed the charges from my account and replaced my Card.

The emails I'm getting are claiming two totally different charges for the same item, so a very obvious fraud.

  Forum Editor 10:24 30 Sep 2018

rdave13

"Seems your Bank is as well"

I have investigated further, and it seems that most banks and card processors do not check the name on the card before authorising an online transaction. As long as a valid card number, expiry date, and CVV number are provided and as long as sufficient funds/credit are available on the card account the transaction will be authorised.

As far as the cardholder name is concerned, its the same as using a card in a shop's terminal - the terminal does not check that the customer's name is the same as the one on the card - how could it? As long as I hold your card, I could use it to make online purchases. In a shop I would need to know your PIN.

In my case, it appears almost certain that the fraudster used a portable device to read my card details when I was in a queue at a motorway service station.

  oresome 10:27 30 Sep 2018

I read the other day that push payment fraud as it's known when the account holder is persuaded to authorise a transfer is committed on an industrial scale by around five gangs in the UK, but the police either lack the resources or motivation to pursue the criminals involved.

Cyber crime seems to be well off the radar for our parochial police set up.

  Fruit Bat /\0/\ 11:10 30 Sep 2018

In my case, it appears almost certain that the fraudster used a portable device to read my card details when I was in a queue at a motorway service station.

Do these "protective wallets" with a built in screen mesh actually work?

Was in the pub on Friday - card machine tied down on the counter where everyone can see you punch in your number was joking with the girl using the machine.

Talking with the rest of the old fogies out with me, we all were using cash because we did want our cards too close to the machines in case we were paying for other peoples drinks. We were pretty "tight" in both sense of the word :0)

This thread is now locked and can not be replied to.

Elsewhere on IDG sites

Sega Mega Drive Mini review: Hands-on

How to Cancel Adobe CC

iOS 13 preview: First look at the new iPhone update

Les meilleurs smartphones Android (2019)