I was tricked by a phone-phisher pretending to be from my bank, and he convinced me to hand over my credit-card number, then did $8,000+ worth of fraud with it before I figured out what happened.

  • perviouslyiner@lemmy.world
    link
    fedilink
    English
    arrow-up
    4
    ·
    edit-2
    8 months ago

    It’s scary how oblivious banks can be, and I think Brokkr is either lucky or optimistic about their procedures - I have seen even large banks like HSBC make “facepalm” mistakes like you described, and it sounds like Cory’s much smaller credit union might even have outsourced their nighttime call handling to someone very close to the fraudsters.

    Still curious how they managed to use Cory’s card with just the card number and not the CVC2 code - is that a regional thing where some online shops aren’t required to use it?

    • xthexder
      link
      fedilink
      English
      arrow-up
      3
      ·
      8 months ago

      Depending on the credit card system used, there’s various levels of fraud detection. Some stores use a point-of-sale system for in-person transactions, and those generally don’t need the CVV code because you’re supposed to have the physical card. It doesn’t stop some businesses from using the system incorrectly, allowing them to charge a card without a billing address or security code.

      This is part of why credit card signatures are basically useless compared to a pin that’s required for all in-person transactions.