Unused credit and debit card fraud, how ?

RocketReeves

In December 2023 I took out a new credit card with the single purpose of doing a 0% balance transfer to pay off some money. 

I have NEVER used this new credit card for any other transactions in person or online. 

In fact the card has never left the house since I received it, and has been hidden safely in a drawer. 

Yesterday (May 2025) I saw a transaction on my account for £54 to Amazon. 

The Card company are refunding the money while they investigate and they have cancelled my existing card and are sending me a new one. The customer service rep I spoke with could not answer my question below and just said if required someone investigating may be in touch with me. 

For reference all my personal and contact details on my credit card account were and are still correct. 

So my question is, 

How does a fraudster find and use my credit card details to purchase something when the card has never been used in the public domain ? 

Reference to the above, our high street bank joint account which is used for paying direct debits relating to household bills and insurances etc. not for any general purchasing transactions has had the same thing happen a month ago in April 25.

Again, the latest new debit cards for this account have never been used to purchase anything in person or online and have never properly left the envelope, never mind the house. 

We had been away on holiday and on our return noticed some odd transactions on our account. 

After contacting the bank we realised they had  completed transactions using both of our individual debit card details. 

Again our contact information etc. on the accounts was correct. 

The bank has refunded us while they investigate, cancelled our cards and sent us new ones (which we have frozen using the banking app! ) 

Again, the bank could not explain how the fraudsters have got hold of our card information. 

How do the faudsters get our debit card information ???? 

born_again

Brute force.

Once these groups find a valid card number they will then use brute force to find others.

It's either that or given it has happened to both Credit & Debit, that someone has picked up & used the details that either lives with you or has been in the house.
So do you keep the cards together, where someone could find them?

flaneurs_lobster

General comment - a lot of institutions will allow you to "freeze" your debit/credit cards using your online account or app. Stops their use in person or online.

flossymcfly

You mention being away on holiday, was anyone in your house whilst you were away? Cleaners, neighbour to water plants etc. If you've never used the cards anywhere then it would maybe suggest someone physically looking at the card to get the details?

Olinda99

I believe Amazon don't required.the cvv on thd card.

MEM62

RocketReeves said:

How does a fraudster find and use my credit card details to purchase something when the card has never been used in the public domain ? 

Again, the bank could not explain how the fraudsters have got hold of our card information. 

How do the faudsters get our debit card information ???? 

You seem to be working on the assumption that the fraudster needed physical access to your card, or details of a transaction in order to compromise it.  Yoiu assumption is incorrect - there are many ways that the fraud can be perpetrated. 

Whilst your emotional need to understand what has happened is understandable, it is not that the banks cannot tell you how the details were compromised.  In cases where they do know they will not share that information with you.  Fraud is a big enough issue for them as it is without them giving lessons to the wider public as how it is done.    

All you can do is stay a vigilant as you can and report any further issues.  

RocketReeves

MEM62 said:

RocketReeves said:

How does a fraudster find and use my credit card details to purchase something when the card has never been used in the public domain ? 

Again, the bank could not explain how the fraudsters have got hold of our card information. 

How do the faudsters get our debit card information ???? 

You seem to be working on the assumption that the fraudster needed physical access to your card, or details of a transaction in order to compromise it.  Yoiu assumption is incorrect - there are many ways that the fraud can be perpetrated. 

Whilst your emotional need to understand what has happened is understandable, it is not that the banks cannot tell you how the details were compromised.  In cases where they do know they will not share that information with you.  Fraud is a big enough issue for them as it is without them giving lessons to the wider public as how it is done.    

All you can do is stay a vigilant as you can and report any further issues.  

Thank you MEM62, I did think the banks won’t share how for security, but what perplexes me is how do I protect against an unknown attack!

In answer to the other responses so far I have already and usually freeze cards on accounts that are not in use and I don’t allow access to anyone to my house. 

born_again

RocketReeves said:

MEM62 said:

RocketReeves said:

How does a fraudster find and use my credit card details to purchase something when the card has never been used in the public domain ? 

Again, the bank could not explain how the fraudsters have got hold of our card information. 

How do the faudsters get our debit card information ???? 

You seem to be working on the assumption that the fraudster needed physical access to your card, or details of a transaction in order to compromise it.  Yoiu assumption is incorrect - there are many ways that the fraud can be perpetrated. 

Whilst your emotional need to understand what has happened is understandable, it is not that the banks cannot tell you how the details were compromised.  In cases where they do know they will not share that information with you.  Fraud is a big enough issue for them as it is without them giving lessons to the wider public as how it is done.    

All you can do is stay a vigilant as you can and report any further issues.  

Thank you MEM62, I did think the banks won’t share how for security, but what perplexes me is how do I protect against an unknown attack!

In answer to the other responses so far I have already and usually freeze cards on accounts that are not in use and I don’t allow access to anyone to my house. 

You can't. Just the same as you can't protect against fraud when you do use a card.