We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Chip & Pin fraud- Please help!
Options
Comments
-
If it's your mums card, she is able to call the police. They will look over any CCTV footage in the shop and see the person making the purchase. They'll know who made the purchase by the date and time of the transaction.
If she isn't willing to go down this route then no doubt she'll have to pay it.We’ve had to remove your signature. Please check the Forum Rules if you’re unsure why it’s been removed and, if still unsure, email forumteam@moneysavingexpert.com0 -
Sorry to pour scorn on your story but several inaccuracies come to light in your post.Hi all,
I recently had a large fraudulent transaction on my aqua credit card. There was a payment made to Louis Vuitton London for just over £1000.00. I only realised this when my statement came through and of course, got straight on to the phone.
Aqua said they would look in to it and sent me new card so I thought it was sorted. However, a week ago I got a letter saying that the transaction was chip and pin- as in the fraudster had used my pin for the transaction!!!!- and that as such, I was liable for it!!!!!!!!!!
Now what I don't understand is how my pin was used, and more importantly, how my card was used physically as I STILL HAVE MY CARD ON ME! It was never stolen or anything and I still have the old one with me now.
I have wrote back to Aqua telling them to investigate properly as I can't possibly pay out such a large amount for a transaction which I never made. I am sick to my stomach with this, as I've had this card for about 4 years and never experienced fraud ever before on any card.
Nobody in my household could possibly have used the card because it is always kept in my purse.
Please please please help.
Many thanks
BatulN
Not doubting the transaction took place (yet) BUT ..point one,,,you don't get a statement as additional cardholder..your mum does
Point two..You cannot phone the credit card company..not your account so will not discuss with you.
Point three...you mention nobody else could carry out transaction..your mum could..it IS her account.
Best thing..only thing to do is for your mum to to go down cctv route/police involvement...YOU as an individual CANNOT do a thing to help in this case :eek:Natwest gold..Limit £1750 bal £970..Vanquis Limit £3000 bal £0..Littlewoods..Limit £1200 bal 0..Additions direct..Limit £4900 bal £1356..Empire Limit £6200 bal £152..Jd williams..Limit £1100 bal £130..Simplybe..Limit £1500 bal 265,,Fashion world..Limit £1400 bal £145 Jacamo..Limit£125 bal 0
Next..Limit £?? bal £0 Asda..limit £1250 bal £440,0 -
twentypenceoff wrote: »regardless of the ops situation, i have read of somthing like this happening, maybe google it, but i cant remember how it was resolved.
http://reseller.co.nz/reseller.nsf/inews/E9BCAB6C8C466E07CC2575A90016D330 ?Conjugating the verb 'to be":
-o I am humble -o You are attention seeking -o She is Nadine Dorries0 -
Paul_Herring wrote: »
That was 3 years ago - lot of things have changed since then - no-one has shown a chip and pin fraud - using a cloned card in the UK - I do not doubt it can be done - but I am sure the banks would not publicise it thats for sure0 -
OP is jackanory, as others have said, too many conflicting points made re statements etc...0
-
You're right. The chip on the card cannot be cloned. It is encrypted to the highest standards and only the banks and those terminals can decrypt the information on it.
The chips *can* be copied, but then don't really work when in use. Not because of the encryption, but the other processess that the chip carries out during authoriastion. The cloned card would be picked up quickly, when the transaction code isn't the one the bank were expecting. Let alone the difficulty in producing these cards in your front room. But it is possible!
I suspect that there is not a copy of this card about, and that the real card was used, and someone has a lovely new handbag. The police will not take the report from the card holders, but will from the issuer. And the CCTV will only be available to the police or the card issuer (Data Protection) but it certainly will show who has bought this item.
If the OP is serious about this then they need to press the card issuer to help (via the account holder) but if they know something about the fraud and they are trying it on then you will get a criminal record.These are my thoughts and no one else's, so like any public forum advice - check it out before entering into contracts or spending your hard earned cash!
I don't know everything, however I do try to point people in the right direction but at the end of the day you can only ever help yourself!0 -
You're right. The chip on the card cannot be cloned. It is encrypted to the highest standards and only the banks and those terminals can decrypt the information on it.
Partly correct. Only the banks can decrypt the information. The only thing the terminals can do is verify an RSA signature against the public certificates.0 -
The chips *can* be copied,
No, they cannot.but then don't really work when in use. Not because of the encryption,
Yes, exactly because of the encryption.but the other processess that the chip carries out during authoriastion. The cloned card would be picked up quickly, when the transaction code isn't the one the bank were expecting. Let alone the difficulty in producing these cards in your front room. But it is possible!
The only practical chip-based attack that can be performed right now (unless you have the only proof in existence to the contrary) is to copy static information across. No secret data can be copied and therefore the chip isn't actually cloned. These cards can only be used offline since - as you correctly state - the generated transaction cryptogram will be incorrect and detected by the bank. There is no evidence of any such attack having been performed so far. All known attacks have been to copy the information onto a magnetic stripe and perform good old-fashioned skimming fraud.0 -
Partly correct. Only the banks can decrypt the information. The only thing the terminals can do is verify an RSA signature against the public certificates.
I assumed the terminal can decrypt it to check the pin entered matches the card?We’ve had to remove your signature. Please check the Forum Rules if you’re unsure why it’s been removed and, if still unsure, email forumteam@moneysavingexpert.com0 -
No, they cannot.
Yes, exactly because of the encryption.
The only practical chip-based attack that can be performed right now (unless you have the only proof in existence to the contrary) is to copy static information across. No secret data can be copied and therefore the chip isn't actually cloned. These cards can only be used offline since - as you correctly state - the generated transaction cryptogram will be incorrect and detected by the bank. There is no evidence of any such attack having been performed so far. All known attacks have been to copy the information onto a magnetic stripe and perform good old-fashioned skimming fraud.
Which was exactly my point - no-one has shown any evidence yet.
However as I said before IF it were possible the banks would NEVER make it public knowledge0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 350.8K Banking & Borrowing
- 253K Reduce Debt & Boost Income
- 453.5K Spending & Discounts
- 243.8K Work, Benefits & Business
- 598.6K Mortgages, Homes & Bills
- 176.8K Life & Family
- 257K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards