We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
My Santander debit card was cloned and an attempt was made by the scammer to purchase goods on line
Options
Comments
-
Yes the santander system will just send the OTP to the phone number registered. The OP stated the scammer called them, so the scammer must have the number already.Slinky said:Surely the Santander system just sends the verification code to the phone number they have on file for you. Isn't that one of the points of 2 factor authentication?0 -
Correct, Slinky.Slinky said:Surely the Santander system just sends the verification code to the phone number they have on file for you. Isn't that one of the points of 2 factor authentication?I came into this world with nothing and I've got most of it left.0 -
But you can and I did, you choose a number for your OTP and my mobile was the only choice for me as I carry it constantly.MorningcoffeeIV said:He was using your card details, so the OTP has to go to the number you registered.
It wouldn't be very secure if anyone could choose to have the OTP sent to their own number.
But I'm now considering getting a dual sim phone and using the second sim for my OTP messages.
0 -
If it was an online purchase they were attempting it seems likely they have got your card details and phone number from the same source, possibly a website you have used to make a purchase on. The fact that the otp came to that number doesn't make any difference to the scammer, although these days most otp codes will go to someone's main mobile number. Obviously one sure fire way to recognise a scam is if 'your bank' calls you on a number you've never given them. So using a second sim number for online purchases can be a good idea.Canadoug said:My Santander debit card was cloned and an attempt was made by the scammer to purchase goods on line. The scammer actually called me saying he was from Santander and asked for my pass code, to which I put the phone down on him (Indian Male).
He rang a further 3 times at 1 minute intervals then one minute later I got a OTP request message from Santander asking to approve a transaction of £324 from ASDA.
How could my cloned card details be linked to my OTP request number?
The other possibility is that criminals have got someone working in a handling centre and are hacking their cardholder details then using stolen data to try to make purchases.
2 -
You are missing the point. Yes, you can and you did, but the fraudster couldn't.Canadoug said:
But you can and I did, you choose a number for your OTP and my mobile was the only choice for me as I carry it constantly.MorningcoffeeIV said:He was using your card details, so the OTP has to go to the number you registered.
It wouldn't be very secure if anyone could choose to have the OTP sent to their own number.
But I'm now considering getting a dual sim phone and using the second sim for my OTP messages.1 -
It sounds like a fraudster got hold of op's debit card number, expiry date, cvc, AND mobile number. Worth checking who you have given all that information to recently, the bank obviously have it but have you made any online purchases and entered that mobile number as your contact info?
1 -
I guess their point is that having got the mobile number in addition to the card details they could be quite convincing in calling and asking for the authorisation code 'they had just sent to confirm your identity"grumbler said:
You are missing the point. Yes, you can and you did, but the fraudster couldn't.Canadoug said:
But you can and I did, you choose a number for your OTP and my mobile was the only choice for me as I carry it constantly.MorningcoffeeIV said:He was using your card details, so the OTP has to go to the number you registered.
It wouldn't be very secure if anyone could choose to have the OTP sent to their own number.
But I'm now considering getting a dual sim phone and using the second sim for my OTP messages.
The scammer might have reasonably guessed the authorisation code would go to the same number but actually it makes no difference whether it went to another number, they can only use it if you give it to them.2 -
My granddaughter had her card cloned, someone payed 4 x £5 to a bookmaker in Gibraltar,
She lives in Leicestershire.
Good thing she had set up alerts
She is with NatWest who refunded her and stopped the debit card
It's happening all the time1 -
MikeJXE said:My granddaughter had her card cloned, someone payed 4 x £5 to a bookmaker in Gibraltar,
She lives in Leicestershire.
Good thing she had set up alerts
She is with NatWest who refunded her and stopped the debit card
It's happening all the timeIt's not 'cloning'. To make a deposit to any online bookmaker one needs only the card details.
2 -
MikeJXE said:My granddaughter had her card cloned, someone payed 4 x £5 to a bookmaker in Gibraltar,
She lives in Leicestershire.
Good thing she had set up alerts
She is with NatWest who refunded her and stopped the debit card
It's happening all the time
You seem to be implying that because she lives in Leicestershire a gambling transaction in Gibraltar is automatically suspect. That fails to recognise that many gambling firms operate their online businesses offshore, with Gibraltar (along with Malta) being one of the main locations, so anyone placing a bet online in the UK could well be making that transaction in Gibraltar.
3
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 350.9K Banking & Borrowing
- 253.1K Reduce Debt & Boost Income
- 453.6K Spending & Discounts
- 243.9K Work, Benefits & Business
- 598.8K Mortgages, Homes & Bills
- 176.9K Life & Family
- 257.2K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards