How Do Credit Cards Get Stolen These Days?

So I woke up today to 4 x $650 transactions to Amazon Web Services +6100000000 AUS

I'm very careful - Online it's all primarily through paypal and in person I use the credit card Apple wallet tap to pay thing.

Are we at the point people are just running random numbers in and hoping for a hit?

I think I may have had my VPN on when I was signing up to one of those regional discounts on here a while ago, but I think VPNs should be safe? (Surfshark)

Side note: Odd to see the Qantas Money app cannot lock cards or see status of cards. Very barebone app

Comments

  • There is a website to check if your email has been in a data breach.

    https://haveibeenpwned.com/

    You can use this to check if your credit card has been in one too.

    http://iamverygullible.com/

    • +1

      Email wouldn't make sense - No websites would be storing my full card details in plain text, ideally tokenizing it. (But password manager, 2fa email, different passwords, etc. Don't think I'm compromised but who knows)

      • +1

        "No websites would be storing my full card details in plain text"

        There are a lot of incompetence companies out there knowingly or unknowingly bleaching rules.

    • +11

      The credit card checker website doesn't work. Can I send my details to you, to check on my behalf?

  • +1

    I think I may have had my VPN on when I was signing up to one of those regional discounts on here a while ago, but I think VPNs should be safe? (Surfshark)

    That's why HTTPS is a thing.

  • +4

    How do credit cards get stolen these days?

    By thieves…

    • +3

      That makes sense. Cheers.

      Level 2 - Public Acknowledgement ✅

    • +3

      How, not who.

      • peekovertheshoulder

  • +4

    A few possibilities:

    • dodgy merchant
    • someone literally keeping your credit card details for themselves for those who grab your details over the phone
    • well-disguised phishing website
    • using pirated software with hidden trojan horse.
    • +1
      • Dodgy merchant - I'm leaning towards this one
      • Phone payment - Only ever said my CC over the phone once for a Doctor's appointment. Would hope it wasn't them. Could be though.

      Funnily enough part of my job is setting up PCI compliant self service and agent payments over the phone… Would be kind of ironic to be burnt this way.

      • Doubtful - Seldom read my emails and click links even less. Also pretty techy so not saying it isn't possible but extremely low. If I've put a CC in I'm usually expecting a product or service and all my deliveries and whatnot are accounted for.

      • Don't pirate software :/

      • +1

        Phone payment - Only ever said my CC over the phone once for a Doctor's appointment. Would hope it wasn't them. Could be though.

        I remember many years ago I was in a swimming pool supplies store and while I was there, the guy at the counter took a phone order for some chlorine and pool salt that was paid for by credit card.

        How do I know this? because the guy at the counter repeated back to the customer the order and also the credit card number, expiry date and CVC that was being used for payment.

        He was clearly being thorough but any customer in that store could've made a note of the payment details.

        I personally refuse to make any payment over the phone (unless it's an automated payment system).

  • +1

    Were you a customer of total tools at all?

    • +2

      Are calling OP a total…..tool

    • I was not

  • +1

    Wait a minute…. That's not the wallet inspector!

  • +1

    All depends by what OP means by "stolen" ???

    Am unfamiliar with AWS - surely hope they utilise CVV check - as well !!!

    As so many "old school hacking" progs out there to generate legit CC numbers … Hey it was a common thing back in the early 2000's.
    And if any online store not asking for CVV check == silly.

    As to CC getting "stolen" … Hope OP also isn't one of those gullible ppl that bought into some of the morning shows targetting seniors - about "securing CC's" … As will do next to ZERO about actually securing your CC … Yet will fleece you of $100+ for "piece of mind".

  • +1

    OP don't feel too bad. One time I got slugged with $350 uber charges on a CC I hadn't even used yet..and I didn't have an Uber account either. The amount got reversed but I'm just saying whatever happened might not be your fault.

  • Was the card linked to a Commonwealth Bank account? If so, it's not your fault.

    • Why CBA, is there a story/joke behind this?

      • It's no joke. There are two or three threads which I cannot find right now and has been happening for a few years now. Here's one thread but isn't the main one: https://www.ozbargain.com.au/node/824572

  • Some stores (especially on holidays destinations where they know you wont stay long) might skim your card when you make a purchase.
    Happened to my wife in Hawaii.

  • Side note: Odd to see the Qantas Money app cannot lock cards or see status of cards. Very barebone app

    I can lock my card…… only got it recently though.

  • I heard on radio in Brisbane that a guy invited a girl back, and she scanned his credit card into her iPhone during her stay, and then starting running up a bill.
    He went to the cafe and watched the CCTV and discovered she was the culprit, shocking

Login or Join to leave a comment