We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
The MSE Forum Team would like to wish you all a Merry Christmas. However, we know this time of year can be difficult for some. If you're struggling during the festive period, here's a list of organisations that might be able to help
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Has MSE helped you to save or reclaim money this year? Share your 2025 MoneySaving success stories!
Santander fraud help!
Comments
-
Santander will always give the money bck as soon as a transaction is marked as potential fraud. However after they investigate, deem it wasnt fraudulent, they can and will take the money bck. Obviously they wont take it bck if the investigation results in fraudulent activity.
Happened to me last week.Swagbucks - Apr 14 - Nov 19PayPal £1745 Amazon £2285 John Lewis £170 Mastercard £3800 -
Santander will always give the money bck as soon as a transaction is marked as potential fraud. However after they investigate, deem it wasnt fraudulent, they can and will take the money bck. Obviously they wont take it bck if the investigation results in fraudulent activity.
Happened to me last week.
In an email sent to me, the woman said my login details where in fact compromised.I can confirm that I have deleted the compromised internet banking details from your account.
Anyway, I will be waiting for their investigation to finish before buying anything, just in case.0 -
Santander will change your OTP number over the phone, as long as you can pass the security questions and tell them the old number. This is the only way to do it if your SIM has expired / you lost your PAYG phone etc.
Installing Trusteer Rapport is the fastest way to get your internet banking details compromised.0 -
Santander will change your OTP number over the phone, as long as you can pass the security questions and tell them the old number. This is the only way to do it if your SIM has expired / you lost your PAYG phone etc.
Installing Trusteer Rapport is the fastest way to get your internet banking details compromised.
Ahh, that make sense. They would need to do that for lost or stolen phones.
And how-so? This woman is pretty insistent on me installing it, and I'm sure she won't send me out new details without it..
How is it a faster way to get compromised, due to the fact it makes you stick out? It's a security app, what could you be protecting, etc.0 -
It sounds to me like a couple social engineering attacks that went unnoticed:
1) A S.E. attack to someone in order to get your personal information (could be to yourself).
2) A S.E. attack to Santander in order to get the malicious phone number in your account, authenticating themselves using your personal information.
I don't think you are ultimately responsible for this as Santander clearly failed when they authorized someone that's not you to change information in your account.0 -
It sounds to me like a couple social engineering attacks that went unnoticed:
1) A S.E. attack to someone in order to get your personal information (could be to yourself).
2) A S.E. attack to Santander in order to get the malicious phone number in your account, authenticating themselves using your personal information.
I don't think you are ultimately responsible for this as Santander clearly failed when they authorized someone that's not you to change information in your account.
A social engineering attack does sound most plausible at the moment.0 -
It sounds to me like a couple social engineering attacks that went unnoticedA social engineering attack does sound most plausible at the moment.
Excuse my ignorance, but what is a social engineering attack, and how do you recognise, and more importantly, avoid one?0 -
Archi_Bald wrote: »Excuse my ignorance, but what is a social engineering attack, and how do you recognise, and more importantly, avoid one?
A social engineering attack is where someone uses information to lie or deceive to get something. Like in this situation, a person could of had the answer to my security questions, all they had to do was ring up Santander and say "I'm xxxxx and I have lost my phone and got a new number, can you add it please?" and Santander will believe it's me when though its not, due to the fact he has this information.
To avoid one, make sure you keep your information to yourself. Check regularly that nothing suspicious is going on inside your account(do not rely on the bank to say they have a xxx colour flag on your account).0 -
Archi_Bald wrote: »Excuse my ignorance, but what is a social engineering attack, and how do you recognise, and more importantly, avoid one?
Using social engineering to compromise details is using the way many people act online (sharing important data such as birthdates, family connections - names etc) to then use that information to guess credentials for sites such as banking / shopping etc.
It's amazing the information people freely give out whilst not really taking any real care who might be reading it (now or a year down the line).
Not suggesting this is what happened with you Alex - just glad you got your money back.0 -
This seems to mean that a social engineering attack effectively is that you gave someone your login details. Not sure what I can say to this.0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 352.9K Banking & Borrowing
- 253.9K Reduce Debt & Boost Income
- 454.7K Spending & Discounts
- 246K Work, Benefits & Business
- 602.1K Mortgages, Homes & Bills
- 177.8K Life & Family
- 259.9K Travel & Transport
- 1.5M Hobbies & Leisure
- 16K Discuss & Feedback
- 37.7K Read-Only Boards