How Credit Card Fraud Works and How to Stay Safe
Whatsapp Pinterest
Advertisement

It’s common knowledge to keep your credit card safe from fraud, but how does it work? How do hackers get your card details in the first place?

Let’s explore how scammers do credit card frauds, and how you can stay safe.

How Hackers Get Your Credit Card Number

For a scammer to do credit card frauds, they first need all the necessary details. There are several ways they can get these details, and they range from the very basic to the more technologically complex.

Getting Details via Phishing

Phishing is an old strategy that is still effective today. The scammer gets in touch with you via phone or email, usually posing as your credit card issuer. From here, they can talk you into giving them your credit card information.

It sounds like something you’d be able to spot right away, but some phishers are very skilled. This is very similar to the tactic that was used in the British phone-hacking scandal a couple of years ago. Thankfully, you can learn how to spot a phishing email How to Spot a Phishing Email How to Spot a Phishing Email Catching a phishing email is tough! Scammers pose as PayPal or Amazon, trying to steal your password and credit card information, are their deception is almost perfect. We show you how to spot the fraud. Read More , so be sure to study up before you become a victim!

Gleaning Details From Database Leaks

Scammers also get credit card details from online data breaches.  Hackers have successfully breached big-names like Target, Home Depot, and the PlayStation Network in the past. These companies tend to have saved payment information listed under each customer, which scammers can use for fraud.

The numbers stolen from those sites often end up on “carding” shops, where people go to buy stolen credit card numbers for use online. ZDNet mentions how some accounts sell for as little as $5 on the dark web. This makes it easy for thieves to buy hundreds of cards at a time, potentially including yours.

Monitoring Your Inputs With Keyloggers

If a hacker manages to get a keylogger or another type of malware installed on your computer, they could quickly steal your credit card information when you use it for online shopping. The silent nature of keyloggers makes them particularly nasty, so be sure to protect yourself against keyloggers as much as possible.

Forging Payments Using NFC Skimming

Someone paying for goods using the NFC on a credit card.
Image Credit: AllaSerebrina/DepositPhotos

These days, credit cards have NFC scanning built-in. NFC is also known as “contactless,” and it’s when you place the card up against the payment terminal to buy something.

Scammers can use devices that act like these payment terminals. When they pass close by to someone with a credit card in their pocket, the skimmer makes a fraudulent payment to the card. The victim may not even realize this has happened until they notice odd fees on their statement.

How Scammers Use Your Credit Card

Once a thief has your credit card, the hardest part is complete. Now all they need to do is use it or sell it on. The credit fraud they choose depends on their ulterior motive behind why they stole the details in the first place.

Making Contactless Payments

Contactless payments with cards don’t require PINs or signatures, so they’re perfect for credit card thieves. Even though the limits for contactless payments are rather small, they add up quickly. Online payments don’t require PINs or signatures ether, so going on an Amazon shopping spree with a stolen card is remarkably easy.

Fortunately, there are constraints for the scammer. The upper limit of a credit card will stop them from spending too much. On top of this, credit cards typically allow a set amount of contactless payments before it asks for a PIN. These restrictions mean the scammer can perform only a small shopping spree before they’re locked out without a PIN.

Selling the Card Online

If the hacker doesn’t want to “dirty their hands” with a stolen credit card, they sell the details online. These credit card markets thrive on the dark web, where all kinds of identifying information is up for sale. Sellers need to keep their practices under wraps to protect their business from law enforcement, and the dark web gives them the protection they need to operate.

Buying and Flipping Goods

A range of different gift cards.
Image Credit: dennizn/DepositPhotos

If the hacker has enough information to make large purchases with the cards, they can buy goods and sell them on the black market. This is safer for them, as it hides their tracks better than if they transferred money directly into their bank account.

Scammers will typically buy gift cards. They can then sell these cards on the black market for less than face value. For instance, a $100 gift card will sell for $60. This makes them highly desirable for buyers and gives the scammer a way to wash their hands of the evidence.

How to Protect Yourself From Credit Card Fraud

There’s a lot a scammer can do with a credit card. As such, it’s important to keep yours secure. By following a few guidelines, you can decrease the chances you’ll encounter credit card fraud.

Don’t Share Credit Card Information Freely

First, don’t share your card information over the phone or in an email. Credit card companies, banks, and stores won’t randomly ask for your credit card information. If someone asks for them out of the blue, exercise extreme caution. If you need to share your information over the phone, be sure that no one is around to overhear you.

Keep Track of Data Breaches

Second, pay attention to online security news. If a service you use suffers a database breach and leaks payment information, contact your bank immediately.

You could wait to see if you get any suspicious charges on your account before alerting your bank, but this is risky. For example, ABC News reported on how the Bank of America fraud department can be hard to convince that a scam occurred in the first place. Waiting for fraud to happen may result in lost money that you have to wrestle back.

Protect Your Card’s RFID

Third, consider buying an RFID-blocking wallet What Is an RFID-Blocking Wallet? (And Which Should You Buy?) What Is an RFID-Blocking Wallet? (And Which Should You Buy?) If you have cards, passports, or devices with RFID chips, then an RFID-blocking wallet could be important for keeping your data safe. Read More , so your card is protected while it’s in your pocket. By blocking RFID signals, the wallet prevents any device from reading the information on your card until you take it out to use it.

Double-Check Payment Points

Fourth, be careful with where you insert your credit card.  Scammers can operate at ATMs, pay-at-the-pump gas stations, small stores, and restaurants. If the payment terminal looks weird somehow, use another method to pay. Make cash withdrawals from within your bank, pay at the counter when you buy gas, and don’t let your card out of your sight.

Keep Tabs on Your Records

Finally, make sure to monitor your credit card statements, bank statements, and credit reports. The earlier you catch a potentially fraudulent transaction, the better. These days, you can get a credit report for free without harming your score. This makes it easier to spot any weird purchases and quickly report them.

Staying Safe With Payment Cards

Credit cards are a hot commodity for scammers. From small NFC skims to large-scale gift card selling, there are multiple ways they can make use of your details. Keep them safe to avoid headaches in the future!

You now know not to trust a phishing call, but can you trust your browser with your credit card information Can You Trust Your Browser With Credit Card Information? Can You Trust Your Browser With Credit Card Information? Shopping online and tempted to save your credit card information in your browser? Here's why you might not want to do that. Read More ?

Explore more about: Credit Card, Online Fraud, Personal Finance, Scams.

Enjoyed this article? Stay informed by joining our newsletter!

Enter your Email

Leave a Reply

Your email address will not be published. Required fields are marked *

  1. Donald Mcgreggor
    August 29, 2018 at 5:05 pm

    I have been to some comments and people are saying RFID wallets doesn't work which I think is not true since I have been using one and have not had any issues since last year. A year ago there was an unknown transaction in my account and i found out about RFID thefts and I decided to buy RFID proof wallet from Mani Wonders. Since then there hasn't been any case of skimming with me, so I would highly recommend to buy it.

  2. Michael Kaufman
    May 3, 2017 at 7:42 pm

    Over the years I've had froudulent charges a few times, always caught by the credet card company before I even knew. Lately, 5 incidents in aout 6 weeks...all but one caught by the company, and the rest the charges were declined as the persons didn't have the right information. One of the incidents was with version where a party called up saying they were me, and to ad da new account....it was also declined by Verizon for not enough information. The last incident was today with a Sears card, which was replaced last January for similar reasons. Seems this is getting bad. I have no idea as to how the information was obtained, with online purchases I suppose it gets hacked somehow. The last three incidents were attempts for online ites generated from Texas, I'm in NC.

    • Dann Albright
      May 13, 2017 at 6:03 pm

      Hm, that's strange. Could be a hack of a company that you've done online business with before, I suppose, or maybe your bank.

  3. Mary
    April 19, 2017 at 9:17 pm

    I just opened a new credit card a month ago. I got the card solely to transfer a balance from high interest card to this zero percent interest card. I have made exactly 4 transactions - the initial balance transfer (on the phone with customer service representative that I called), a payment to the account, and one $14 online purchase for my son. Card is still in my dresser with the sticker on it. It's never been out of the house. Yesterday I received an email from the issuer that there may be fraudulent activity on the account. Someone used it 3 times for Dominos purchases ($57 each) in a city 2 hours south of me, and another Dominos purchase in NC (7 hours north), they ordered $400 online from a lamp company that, thankfully, needed an address verification, attempted to set up a paypal account - again needing an address verification. A clothing company - same story and they TRIED to order $4000 worth of stereo equipment. Apparently, in addition to my account number, they have my address and cellphone number -what's tripping them up is not shopping to the same address.

    I just don't don't understand how they got this info.

    • Dann Albright
      May 13, 2017 at 5:29 pm

      Sounds to me like the it could be a hack at the bank. Either that or someone with access to your mail is doing it.

  4. Dr Rameshbabu
    April 12, 2017 at 9:13 am

    On 4-4- 2017 a phone call came to my mobile asking is it Dr Rameshbabu? I said yes speaking. Do you stay at such a residence? I said yes. You hold SBI credit card ? yes I said Plan for your card is going to change we are sending new card within 7 days. Your card details remain same. Your card number starts from........yes. Kindly tell details ? I told him, He asked OTP. I told and within seconds Rs 9000/ was debited from my card and phone went silent
    How that person knows abut my card?

    • Dann Albright
      April 22, 2017 at 3:18 pm

      As far as I'm aware, it's impossible to tell from your story how that person got your card details in the first place. It sounds to me like your bank could have been hacked. Is there any evidence of that?

  5. Sheron
    March 13, 2017 at 9:42 pm

    I felt compelled to respond to this article due to ID theft. I'm on round 3. The first one was in 2010 where they had all of my information. Name , address, phone number , date of birth, SSN and accurate bank information. I cancelled everything and opened new accounts. They claimed that I had an unpaid play day loan account and there was a warrant for my arrest. The police came and verified it was a scam after listening to the phone threats. The continued to contact me but I ignored them.
    2013 some one applied for a Cash Call loan during my old address and information from the first ID theft incident. I was alerted by LIFELOCK and my IDentity Guard accounts and was able to stop the account from opening. The good thing is they were going yo do the debits from my old closed bank account from the first incedent so I felt semi safe.
    Fast forward to 2017. Some one had stolen my information again. They now have my new address and information from my credit card. The purchased a security system in Memphis Tennessee which fortunately they included the account number on the transaction list on my statement. I called the company who could only verify where the purchase was made but could not give me the information as to who is doing this. They did ask me the ridiculous question if I was going to press charges? How can I press charges if the criminal had more protection rights than I do. I also had to give information proving that I was not in Memphis at the time of the charges. And needed to explain how it is that they could use my card and access all of my information if the card had been in my procession at all times. The bank claims they verified with the company that the billing information belongs to me. Not exactly something I have not already confirmed. I told them they need to get the information of where the security system is installed which the security system company said could be given to the banks Legal Department because the crime us against the bank and not against me. LOL
    The Internet charges cannot be traced because do not currently have an account with the ISP but the card company wanted a valid letter from the company proving the last time I paid a bill to the. And when my old an out was closed over 7 years ago. There is no information in their system so I'm not sure if I will be stuck paying for cable from a provider that does not offer services in the county I live in.
    What's do frustrating is I only disputed the charges that were not mine not the whole bill. This card is only used for business with recurring automatic debits from the same exact companies. Outside purchases are only made from two other companies and only when office supplies are needed. The card had never been used for retail purchases and had never been used out of state. The company can see who the criminal is but cannot reveal who he is. The companies that I contacted where the purchases were online purchases did not require the security code to complete the transaction.
    I feel that even if a company cannot reveal who the criminal is to me they should flag the account and give the true card holder the option to start a criminal investigation. Regardless of what they say this is a crime against the cardholder echo stands to lose the most.
    Any card company who does not take the precaution to ask for the security code should be forced legally to reimbursed accounts whenever there is a complaint of fraudulent charges. Let that be their hoop to jump through.
    I asking found out that this particular card company sends their cards in the mail ALREADY ACTIVATED. I found that out when I told them that I received but had not activated my new card. I told them that was dangerous and crazy considering that there are companies that are allowing transactions without security codes and if they send activated cards if it is stolen before it gets to the card holder then they would have all they need to do lots of damage before they can be stopped. Seriously why would that be my or any other card holders fault.
    So today I was searching for RFID protection wallets. I'm not sure if they work because there is too much conflicting information.
    Chips are not much protection. This is chip protected.

    • Dann Albright
      March 29, 2017 at 3:28 pm

      That's strange that they ship the cards already activated, and that definitely seems like a security concern. Is there any way you could pick up a new card at the bank? It sounds like someone has figured out that they can use those cards before they get to you. It's also possible that there's someone close to you who's nabbing your cards and using them. Having this happen three times doesn't seem like bad luck; it sounds like there's something going on.

  6. Katie
    January 25, 2017 at 7:54 am

    I just bought bags online and then found out it's fraudulent website. So, I cancelled my order again but I don't know if it will work. I'm afraid if they steal my credit card. So, what should I do?? Please reply me. Thanks!

    • Dann Albright
      February 6, 2017 at 7:12 pm

      Call your bank and tell them to cancel the charge. After that, either immediately close your card and get a new one or keep an eye on your account online to see if anything strange shows up.

  7. scott aidlaw
    January 14, 2017 at 6:57 pm

    I got a text from my credit card issuer stating that my credit card was used at a " gamestop" store in Atlanta for $200 & at an Atlanta Burger King for $12.99. They declined the charges & contacted me. I live in San Francisco & have not been to Atlanta for over 20 years. Glad they caught it, but still a hassle getting a new card and notifying vendors I have accounts with !

    • Dann Albright
      January 18, 2017 at 11:28 pm

      Yeah, that is a hassle. But it's a lot less of a hassle than dealing with thousands of dollars on your bill!

  8. Amabella
    December 30, 2016 at 12:10 am

    I've had all my accounts credit and debit with multiple banks hacked for the last year... I can collect a card Sunday and by Monday midday it's been used online. It was printed and collected in branch, into my purse bought home and stayed in my purse. I have examples of cards being compromised whilst in unopened envelopes, never been online or have had for years and never used suddenly online making purchases. I've had a hack into an iPhone 5 which has been used to call the bank with the fraudster impersonating me, the phone dials the banks by itself...

    Have asked the police to sweep the house but am getting zero support as it's unheard of but by the looks of these posts these compromises are possible and are happening

    Either something in the house zaps a cards details as the mail drops on the floor or a database somewhere with all my changing card details is accessible

    Any advice ?

    Unshared mail box
    New wifi hub
    Security on all pc's
    No visitors help or gardeners
    In a good chunk of cases cards never used online
    New accounts opened with old and new bank

    • Dann Albright
      January 5, 2017 at 4:21 pm

      That's very strange; do you know if other customers of your bank have had similar issues?

  9. Anna
    October 24, 2016 at 12:19 am

    Mine was taken by going through a drive-through. I noted that the girl working had my card longer than she should have and I couldn't see in the window very well. So not too long after this happened, my account was unexpectedly overdrawn with a $700 + purchase for a product seen on an infomercial. I did some sleuthing myself and the person was caught by law enforcement.

    • Dann Albright
      October 26, 2016 at 9:37 pm

      Glad to hear that your issue was resolved effectively! I don't know how many people end up catching the person who nabbed their card, but I can't imagine it's too many. Good job paying attention to where your card was, too. Not everyone (probably including me) would notice that.

      • Martina
        December 3, 2016 at 8:48 am

        I want to know is there any way I can find out the email on the charges that was took from my card

        • Dann Albright
          December 10, 2016 at 12:18 am

          You might be able to get in touch with the merchant where the card was used, but I'm not sure how likely that is to work. It's entirely up to them.

  10. Kath
    September 27, 2016 at 2:24 pm

    Hi
    I just got my debit card details stolen and it's still in my purse. After getting declined at shop discovered $2 500 purchases made pretty much over night, whilst I was sleeping and in a different state. Think I was hacked after or during online order for Target. Reported to cyber crime and bank will give money back to me. Still the person who did it paid their fines and energy bill with my card so should get caught!

    • Dann Albright
      October 21, 2016 at 8:03 pm

      Did you use that debit card online? If you did, it's quite possible that someone got the details in a hack. And I hope you're right about them getting caught; using it for energy bills doesn't seem like the best way to go!

  11. Vivian Kannon
    August 15, 2016 at 4:23 pm

    Someone made a purchase online at Best Buy with my number. This is a fairly new card and I only use it to shop on line. No one else uses it. The transaction date was 7/08, so I think it was stolen from some online order on or before that date. I had 2 purchases on 7/07. I also had a purchase on 7/02 and 7/01. I should put these on my Must Avoid list in the future, right? I have Malwarebytes on my computer.

    • Dann Albright
      August 16, 2016 at 2:06 pm

      That's strange . . . seems like it could have been stolen from an online order. Companies do have breaches on a regular basis, so it's certainly a possibility.

      • Meg
        August 29, 2016 at 11:02 pm

        Something similar just happened to me also. I got a newly activated card, used it for 3 purchases: a restaurant, a gas station, and an online shop. After the online shop purchase posted, 4 new charges appeared: two $1 then two $40. I changed my card account, checked my credit report, and got the two $40 charges reversed.

        But now what? Do I put a fraud hold on my credit? Do I take action against the online shop? After researching the place, others have had similar experiences with fraudulent charges made after purchasing from there. I submitted a BBB complaint, but not sure what will come of that.

  12. Jona Marie
    July 30, 2016 at 9:32 pm

    I offer an explanation for credit card fraud which cannot be attributed otherwise: it happened before it was in your house and your hands. (Thank you Sherlock Holmes, "when all other explanation are excluded, the remaining must be true.")

    It is theoretically probable that someone wanting RFID information can go to a bank of mailboxes and use one of the illegal readers. It is a felony on several counts, but the rewards are enticing, and made easier since they know your billing address (cards are always sent to the billing address).

    Some mailboxes appear to be metal, but are not. Sometimes not enclosed enough to block RF on all six sides. Or a person with a reader can cruise down the street checking plastic mailboxes, or pulling open the front of the metal ones, especially where they are close together.

    Worse yet, a postal employee could be doing it, in the mail sorting area of the USPS. Of course this would involve a more sophisticated piece of equipment to segregate the signals and data, but once again, rich rewards are quite enticing.

    The solution: ask at work if you can use the company's address on a temporary basis. Be sure to use "? The Company" on the 2nd address line, and put your floor/dept/mail stop in there too. Upon receipt, it will be in a big pile of other mail coming to the company, not sorted locally or delivered where unsecured. Upon receipt, immediately activate and change the billing address to the correct one.

    Those are my thoughts to explain where they get your info if the card itself has been secured since you received it: it had to have happened before it was in your house and your hands.

  13. Illuminated
    July 26, 2016 at 7:34 pm

    As I indicated its Bank of America. And no one else has access to my computer unless they have broken into my house.

    • Dann Albright
      August 11, 2016 at 2:35 pm

      That's pretty weird. Sounds like there's some factor that we haven't considered yet. Especially if you never entered it into your computer. Also, you said that "Google charges appear[ed]"—what did your statement say? Did it give any indication of the account that used the card or what it was used for?

  14. Illuminated
    July 23, 2016 at 4:53 pm

    I've had repeated thefts of my credit card number. The last time this happened I deliberately did not use the replacement card with the new number for anything. I didn't use it in a store, type it in anywhere, assign it to a recurring charge, or save it online. Six weeks later, fraudulent Google charges appear. I don't have a Google pay account or anything else Google. The Bank of America told me I likely had malware that was taking info from my online account but I daily scan with Malwarebytes Premium and my Micro Center diagnostics dept says I don't have a problem. I think it is a BOA breach. How are they getting my info?

    • Dann Albright
      July 25, 2016 at 8:08 pm

      Sounds to me like someone's either accessing your computer or your bank has had a breach. Are you using a major bank, or a smaller, local one?

  15. Emily
    June 12, 2016 at 7:54 pm

    How do credit card hackers get additional information that isn't on the card, like my billing address? Would that have been stolen through an online hack? Do you know the best way to find out if wifi is compromised or if my computer has malware that scrapes my info?

    • Dann Albright
      June 13, 2016 at 7:50 pm

      Hm, that's a tough one. Data leaks or hacks seem pretty likely, but they may also be able to get your billing address through public channels. From what I understand, it's not that hard. To check your wifi and computer, change your wifi password and run an anti-malware scan. That's the best advice I can give you. If you search around the site, you might be able to find a more detailed answer, but that sort of monitoring on your wifi is definitely beyond my own level of expertise. Hope you get it figured out soon!

  16. Ernie
    May 16, 2016 at 2:24 pm

    I just discovered 2 fraudulent charges at Home Depot on a card that I have NEVER CARRIED OR USED. The bank told me it was an on line purchase and they even used my 3 digit security code. OK now how did the thieves get this info. The article does not cover this situation or I missed it.

    • Dann Albright
      May 16, 2016 at 8:43 pm

      That's pretty weird. If you've never carried it or used it, it seems to me like the only possibility is that your bank got hacked, but it seems like there's a pretty low probability of that, too. Hm. Keep us updated on what you find out!

      • dita
        June 3, 2016 at 6:02 am

        same here Ernie, home depot just billed me usd 3000. i never heard of that website after my bank send me a confirmation request. Anyone here know whats gonna happen next? i dont need to pay for that right? im so panic. and well, i did call the bank and c ontact home depot.

        • Dann Albright
          June 6, 2016 at 11:55 am

          Very strange; as far as I understand it, you won't be responsible for that payment. What did your bank and Home Depot say when you called them?

    • Aj
      August 7, 2016 at 3:02 pm

      People are smart and some are disparate....it's easy to do something when you do it over and over see everyone tells you the same thing, keep the card out of sight, but people hack .... a hacker can rob a back ,anything ....but when they found out that card never been used....great credit gone .....it's no keeping your card save .....it's stop making new cards or pay everything cash....and when shop online make a PayPal send money to PayPal when you wanna shop or be smart put your due credit card payments in your PayPal....so you don't have to get bad credit and make a new account....the only way to get fraud if you let yourself .....think.... Everyone knows how to stop it but don't you think you would be unfruadble if you actually knew how to do it ..... Don't you think you can hack the hackers if you learn/knew how to hack ..... Don't you think if malware can hack your computer.....another computer can hack malware only if you knew how to actually do it

      • Aj
        August 7, 2016 at 3:35 pm

        and people think about that one card that got fraud...but the person that toke your card and billing info could be make way more card with your social!!!!! Dark web my ass??it's right under yo nose .....remember that weird link you pushed and it sent you no where .....that's a set up....some people call your phone looking for the info .....and some really smart people that would actually go in your device...just by you letting them

  17. Samurai Shonan
    May 10, 2016 at 10:33 pm

    They got two of my Japanese cards in the last two weeks. Sucked.

    • Dann Albright
      May 16, 2016 at 8:42 pm

      Oof. Sorry to hear that. Hope you get it worked out!

  18. Bill
    December 22, 2015 at 2:38 pm

    1) Your card number isn't transmitted using ApplePay -- just a pseudo-number which is useless to crooks. 2) Online use of cards usually requires additional info so address and/or phone number verification can be done. 3) While grabbing a card number from an NFC card with a reader is possible, as is using a skimmer, neither of these methods capture address information or the card verification codes (because neither of those are encoded anywhere).

    The worst way to use a card is to hand it to someone else!

    • Dann Albright
      January 2, 2016 at 1:34 am

      All of the things that you point out are true . . . but online credit card fraud does still happen. Keyloggers and wi-fi interception will provide all of the information a fraudster needs to use your credit card, and that doesn't require that they actually get the physical card. Yes, handing your card to someone else is dangerous, but if the card doesn't go out of your sight, it's quite a bit safer than handing it off to someone and losing track of it for a few minutes!

  19. Mike
    December 22, 2015 at 2:14 pm

    I guess I have been lucky so far,but for a number of years now,we have been using chip enabled cards with a pin number,so theft of the card wouldn't help the thief ( my cards don't use NFC,and I have to insert them into a reader). The article doesn't mention the security code on the back of cards. If I make a purchase online,the site often asks for this number,so again,if a thief acquires my card number,he still doesn't have the security code on the back of the card.

    • Dann Albright
      January 2, 2016 at 1:32 am

      That's true, the security code on the back of the card is an important part of making an online purchase, and just having the card number isn't going to get you past that particular security hurdle. If someone actually gets a hold of your physical card, they could easily write down the number, but in other cases, it's going to be more difficult.

      Also, chip-and-pin cards are definitely more secure, and I'm very glad that the US is starting to make the transition. It's moving really slowly, but any change is welcome.

  20. Anonymous
    December 22, 2015 at 10:26 am

    I'm not kidding or making this up here..... but just today (December 21), the day this article was posted, a coworker of mine had his bank debit card hacked and was charged over $800 for purchases he never made, in a city he never visited! (Charleston, South Carolina, USA, to be specific).

    The thing is, his previous bank account from the state he used to live (New York) was also hacked recently! His card was charged in yet another state he's never been to (somewhere in Indiana). That time, it was two, small, separate purchases of around $40 that were flagged by his bank.

    He just started his new (local) bank account here two (maybe three) weeks ago, and now he just got hacked for the previously-mentioned $800+ dollars!

    It's one thing to have your bank account hacked in another state, but to have your new bank account hacked again? That's pretty scary, and as a geek, I'm trying to figure out what this guy is doing that allowed himself to be bank-hacked twice! He doesn't have the internet at home, and claims to have never shopped online. He basically buys beer at the corner gas station, food at the local supermarket, and goes to the local pubs frequently. Apparently, he uses his debit card to do much (if not all) of his purchases.

    I suspect either there's a "skimmer" in an establishment he frequents, or that one of his associates has somehow acquired access to his new account. It seems very odd that his bank account would be hacked only two or three weeks after he opened it!

    The bank told him that the charges are being turned over to their fraud department, so hopefully the culprit(s) will be caught. But this has made me quite paranoid about my own bank cards and charges.

    Thanks to this article, I'm wondering if he got "phished" somehow over the phone. Or "skimmed" at an establishment he frequents. Considering he got hit twice, over a relatively short period of time, on two accounts at two separate banks, seems to indicate he's being targeted somehow.

    • Dann Albright
      January 2, 2016 at 1:30 am

      Wow, that's crazy! Seems likely to me that there's a skimming operation somewhere nearby, especially if he's not shopping online. And he definitely could have gotten phished over the phone . . . that happens to a lot of people. If you find out more about this case, please let us know; I'd be very interested in finding out how this happened.

      Also, this is a great reminder that you should be checking your accounts frequently to make sure that no suspicious activity is showing up!

      • shay
        June 9, 2016 at 8:22 pm

        Hey i just wanted to say I got scammed with a brand new account after me old account was hacked. within two weeks both accounts were hacked and out of new York where I've never been. I am definitely being targeted

        • Dann Albright
          June 13, 2016 at 7:51 pm

          That's rough, Shay. I wonder if they got enough information from the first card to get access to the second one. You may want to open a card with a different bank/provider, and make sure to run anti-malware scans on your computer on a regular basis.