We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
The Forum is currently experiencing technical issues which the team are working to resolve. Thank you for your patience.
Natwest data breach?
GT732
Posts: 11 Newbie
Afternoon, I had a notification on my app on Sunday after midnight that I need to approve a payment. I quickly logged on and it said £25 to some work site website. It didnt give me the option to approve or reject, I quickly froze my card and the payment didn't go through.
In Jan 2022, in the morning I seen a notification to approve a payment. By the time I logged on somehow the payment approved itself. Whilst this for £1, when I called fraud they said several payments were attempted prior to it being approved. I was advised persons using the card were attempting to guess the 3 digits on the back. Why didn't they block the card automatically?
A new card was issued back then. I used this card in local retailers such as supermarkets, BQ etc from Jan 2022 to Dec 2022. I have not used this card for the whole of 2023 or 2024. .
So this Sunday I called fraud again and it was connected to India and they advised someone must have used my card and pin... (you dont need to use a pin for an online transaction).
As I have not used the card for nearly 2 years, I am now wondering whether there is a data breach with Natwest. No one will wait 2 years after cloning your card to use it.
Anyone else faced something similar?
In Jan 2022, in the morning I seen a notification to approve a payment. By the time I logged on somehow the payment approved itself. Whilst this for £1, when I called fraud they said several payments were attempted prior to it being approved. I was advised persons using the card were attempting to guess the 3 digits on the back. Why didn't they block the card automatically?
A new card was issued back then. I used this card in local retailers such as supermarkets, BQ etc from Jan 2022 to Dec 2022. I have not used this card for the whole of 2023 or 2024. .
So this Sunday I called fraud again and it was connected to India and they advised someone must have used my card and pin... (you dont need to use a pin for an online transaction).
As I have not used the card for nearly 2 years, I am now wondering whether there is a data breach with Natwest. No one will wait 2 years after cloning your card to use it.
Anyone else faced something similar?
0
Comments
-
I had a similar situation with a card that was tucked away in long term storage, was only ever used online and not for years.
https://forums.moneysavingexpert.com/discussion/6548364/credit-card-fraud-weak-online-retailer-security
As usual the helpful lot around here gave some good theories (the bank gave me no real detail)1 -
My understanding is that incidents such as this will typically stem from industrial-scale brute force attempts to guess card numbers (plus associated data) rather than data breaches as such, so the latter, while possible, is unlikely to be the root cause.GT732 said:As I have not used the card for nearly 2 years, I am now wondering whether there is a data breach with Natwest. No one will wait 2 years after cloning your card to use it.5 -
A good number of banks / building societies (certainly including NatWest) allow debit cards to be "frozen" so that they cannot be used for purchases or ATM withdrawals.
I've got a bunch of debit cards for current accounts which are never/rarely used. Wherever possible these are frozen.3 -
I have read somewhere that a natwest employee did blow the whistle as a colleague had such data at his home address for many natwest customers...eskbanker said:
My understanding is that incidents such as this will typically stem from industrial-scale brute force attempts to guess card numbers (plus associated data) rather than data breaches as such, so the latter, while possible, is unlikely to be the root cause.GT732 said:As I have not used the card for nearly 2 years, I am now wondering whether there is a data breach with Natwest. No one will wait 2 years after cloning your card to use it.0 -
Are you thinking of this story from 15 years ago perhaps:GT732 said:
I have read somewhere that a natwest employee did blow the whistle as a colleague had such data at his home address for many natwest customers...eskbanker said:
My understanding is that incidents such as this will typically stem from industrial-scale brute force attempts to guess card numbers (plus associated data) rather than data breaches as such, so the latter, while possible, is unlikely to be the root cause.GT732 said:As I have not used the card for nearly 2 years, I am now wondering whether there is a data breach with Natwest. No one will wait 2 years after cloning your card to use it.
Sacked NatWest worker has customer details under her bed - BBC News
That sort of thing can undoubtedly happen occasionally but is vanishingly unlikely to be the root cause here....5 -
Most of the fraud attempts are not carried out by the people who steal the data, but by people who buy data from the "hackers".GT732 said:No one will wait 2 years after cloning your card to use it.
It may come as a surprise, but a lot of criminals are not honest people, and will happily sell on old blocks of stolen data as if they were new. You can't trust anyone these days!!3 -
I had something similar happen with a Lloyds debit card a few years back - used it once in an ATM to change the PIN and withdraw some cash to test it was working, and then it remained in the cupboard for a year or two. Somehow it was used for a few online transactions at a supermarket I've never shopped at before. Froze my card after the first transaction alert came through (I usually keep my unused debit cards frozen but forgot to do so in this instance), and there were a few more attempts after I did that failed before they gave up.
Lloyds ultimately refunded the transaction and issued me with a new debit card but I never did find out how the details got exposed
0 -
I believe it is this one. It is something leaking somewhere, it would be very hard for someone to sit and generate or use some form of a system to match my full name (correctly spelled), 16 digit number, and expiry date with the correct 3 digit security code...eskbanker said:
Are you thinking of this story from 15 years ago perhaps:GT732 said:
I have read somewhere that a natwest employee did blow the whistle as a colleague had such data at his home address for many natwest customers...eskbanker said:
My understanding is that incidents such as this will typically stem from industrial-scale brute force attempts to guess card numbers (plus associated data) rather than data breaches as such, so the latter, while possible, is unlikely to be the root cause.GT732 said:As I have not used the card for nearly 2 years, I am now wondering whether there is a data breach with Natwest. No one will wait 2 years after cloning your card to use it.
That sort of thing can undoubtedly happen occasionally but is vanishingly unlikely to be the root cause here....
But then the other main issue is Natwests system doesn't even attempt to block the card or freeze it when I have clearly been told the 3 digits were being guessed. There's 999 Combinations on that alone.
What makes it worse is if you wish to transfer more than £750 from your account and do so via app you need that stupid calculator they provide to generate a pin. But how does that work because that is never connected to the Internet so natwest does work on some algorithms which are weak0 -
They'll block the card automatically if too many incorrect attempts are made, the same as with a PIN. Also the same as with a PIN, they don't block straight away on the first failure as people mistyping their own numbers is common.But then the other main issue is Natwests system doesn't even attempt to block the card or freeze it when I have clearly been told the 3 digits were being guessed. There's 999 Combinations on that alone.
You not understanding how something works doesn't make it weak.GT732 said:
What makes it worse is if you wish to transfer more than £750 from your account and do so via app you need that stupid calculator they provide to generate a pin. But how does that work because that is never connected to the Internet so natwest does work on some algorithms which are weak2 -
It's not entirely straightforward but it's certainly possible - the name often isn't validated, there will only be less than ten digits out of 16 needed (the first six will be within published BIN ranges and there will be at least one checksum digit, where algorithms are known), expiry date will be no more than 36 or 48 possibilities, etc.GT732 said:
It is something leaking somewhere, it would be very hard for someone to sit and generate or use some form of a system to match my full name (correctly spelled), 16 digit number, and expiry date with the correct 3 digit security code...
I'm not saying there can't be data leaks, and certainly there'll be more relevant ones than in that old story above, but am simply challenging your apparent inability to countenance the other possibilities that are more likely....1
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 350K Banking & Borrowing
- 252.7K Reduce Debt & Boost Income
- 453.1K Spending & Discounts
- 242.9K Work, Benefits & Business
- 619.8K Mortgages, Homes & Bills
- 176.4K Life & Family
- 255.9K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 15.1K Coronavirus Support Boards