Fraudsters exploit phishing tactics to illicitly gather card information, which they then use to fund extravagant purchases via mobile payment platforms like Apple Pay or Google Pay.
You might receive a phone call seemingly from your bank, where a seemingly knowledgeable representative will ask you to verify your personal information, which you provide. The caller might then inquire if you’ve recently made purchases such as a £120 electronic item or spent £235 in Birmingham—purchases you don’t recognize.
The person on the call assures you that these transactions have been halted and that steps need to be taken to secure your account further. They may inform you that you’ll receive a notification that requires your approval, or a code that you need to relay back to them. Amidst the urgency to safeguard your funds, you comply with their requests.
However, this person is not a bank employee but a criminal who has just linked your payment card to a digital wallet on one of their devices. Soon, your account may be drained through purchases of high-value items like smartphones or designer apparel, which are then sold for cash.
Banks have observed an uptick in such fraudulent activities aimed at manipulating victims through sophisticated digital wallet scams, prompting them to implement enhanced security measures.
Danai Antoniou, Chief Scientist at Gradient Labs, a financial services AI firm, explains that the tactics used by these criminals might seem innocuous since the victim isn’t asked to transfer money directly. She notes that frequent warnings can sometimes desensitize customers, making them less alert to fraud. She adds, “Victims often report feeling panicked and pressured during the call, told that their account is compromised or their funds are in jeopardy. In the heat of the moment, approving a notification seems like the right thing to do, unaware that they are essentially handing over control of their account.”
Santander has identified digital wallet fraud as the second most common cause of card scam losses last year, and HSBC has seen an increase in such cases over the past 18 months. UK Finance, the banking trade association, indicates that these attempts have surged as criminals get more desperate, given the effectiveness of current bank security systems.
The Anatomy of the Scam
The scam often begins with a phishing attempt where the victim unknowingly provides personal and banking details, perhaps through a deceptive text message promising a winter fuel allowance, or enticing product offers on social media.
Weeks later, allowing the victim to forget this interaction, the fraudster calls, claiming to be from the victim’s bank—information gleaned from earlier collected details. They may ask for confirmation of details like an address or postcode to appear legitimate. The fraudster then mentions some fake transactions, and upon the victim’s denial of such activities, claims these have been stopped while insisting on further securing the account. They inform the victim that a notification for approving a new digital wallet addition or a security code will be sent shortly.
Antoniou explains, “The notification or code the victim receives is legitimate—it’s what your bank would send if a new card was being added to a service like Apple Pay or Google Pay. Unknowingly, the victim approves the addition of their card to the criminal’s digital wallet.”
Following this, the fraudsters can swiftly drain the victim’s account, purchasing costly items from technology and fashion retailers, which are easily resold.
Steps to Protect Yourself
Banks have robust systems to secure accounts and do not require customer intervention to do so. “Never trust an unexpected call claiming to be from your bank. If you receive such a call, hang up and call back using a number from the bank’s official website or the number on the back of your card,” advises Antoniou.
Nationwide advises customers to be vigilant about the purpose of any one-time passcodes they receive. HSBC has introduced new security measures and continues to remind customers to safeguard their personal details like one-time passcodes.
UK Finance recommends setting up bank alerts and regularly monitoring transactions to quickly identify any suspicious activities. They stress the importance of contacting your bank and reporting to authorities like Report Fraud if you believe you have been scammed.
Apple clarifies that it does not approve cards for digital wallets but provides banks with information to help fight fraud. Google did not comment on the issue.
Similar Posts:
- UK Alert: Police Warn of Rising Courier Fraud at Banks
- Slash Holiday Expenses: 8 Smart Tips to Save Money and Reduce Card Costs
- Beware of Deceptive Discount Ads: Experts Call It a Highly Advanced Scam
- Avoid Financial Traps: Essential Tips to Dodge ‘Money Mule’ Scams
- Master Your Child’s First Mobile Phone: Essential Privacy Settings & Teaching Tips!
