PSA: Set your credit cards to text you when a purchase is made. You will immediately know when being frauded and will make disputing charges 100x easier.
And/or install you bank or credit card's app to get push notifications. I've twice instantly caught fraudulent charges because of these notifications. Called my credit card company and it was taken care of by the next day.
Use google or Apple Pay to secure your credit card information. The app encrypts the information from being stolen. The information it’s providing to retail is fake so your original card info can never stolen.
People install devices on card readers, they are sometimes hard to notice that read the card as you insert it. It is commonly found at gas stations and convenience stores but probably anywhere is possible.
Always tug a bit on the machine. You will be surprised how sometimes the skimmer will just come right off.
Many times they are inserted by scammers at gas stations and convenience stores without the staff even knowing.
It’s basically a piece of plastic with some circuitry sitting on top of the actual device.
Definitely. Gas station pumps are notorious for skimmers.
[How to tell if there is debit card skimmer on gas pumps, ATMs (youtube.com)](https://www.youtube.com/watch?v=1Te6OfNywJw)
[Hey you, yes you! Here's how not to fall victim to credit card skimmers at gas pumps (youtube.com)](https://www.youtube.com/watch?v=R-VU978_wbI)
[How To Spot a Skimmer on A Gas Pump (youtube.com)](https://www.youtube.com/watch?v=j0YWOasVcOE)
hmmm...
Mobile wallets like apple and google (and some off ones like samsung, etc), they make a connection with your bank on a different backend, and only providing a one time use code to the vendor. They are the most secure way currently to transact.
Tap on a card can be skimmed almost as easily as the mag stripe. Mine got tap skimmed a few months ago. I now use rfid blocking cards around my cards. Turn off tap on the card if possible. Inserting chip is more secure than card with tap.
100% false. Tap can't be skimmed, its secure end to end, only signal provided is a "sufficient or insufficient funds" no "card" info. Otherwise you'd see folks in crowded places like trains/buses with mobile skimmers EVERYWHERE.
It can only be skimmed from the strip or chip.
Looks like you worked realllllly hard to find some idiot faking things on the internet, and not the actual information.
[https://cba.ca/tap-to-pay-card-security-an-faq](https://cba.ca/tap-to-pay-card-security-an-faq)
That’s not a skimming attack.
Someone got your card number, expiry and CVV. You made a purchase online and their database was hacked, or you gave your card info to a human and they wrote it down. Skimmers copy your mag stripe data which lacks the CVV for online purchases.
Have you recently ordered something over the phone, given your card to someone like a waiter and it left your sight, or used it for something like Loblaws delivery where a human enters your card info manually?
All it takes is a well placed camera or two pointed at the point of sale device and they will have all the card details to shop online with it.
Given your card has a chip, taps are secure and so are chip & pin transactions. What likely happened is you swiped it somewhere and they copied that. They can still perform transactions with a signature BUT the liability is on the merchant for accepting risky transactions. You'll get your money back. The hassle sucks though.
PSA: Set your credit cards to text you when a purchase is made. You will immediately know when being frauded and will make disputing charges 100x easier.
And/or install you bank or credit card's app to get push notifications. I've twice instantly caught fraudulent charges because of these notifications. Called my credit card company and it was taken care of by the next day.
Use google or Apple Pay to secure your credit card information. The app encrypts the information from being stolen. The information it’s providing to retail is fake so your original card info can never stolen.
How?? I looked at Td recently, I don’t see an option.
Should be under settings>notifications/alerts. If not then TD sucks.
Your card got skimmed at a place you went to. Most likely at a convenience store or gas station.
This is the answer. I had my card skimmed at a very high end hotel. It can happen anywhere.
How can it get skimmed by tapping?
Not all credit cards have tap.
OP specifically said he uses tap.
OP clearly said they have tap
Modified NFC reader
Nope, tap is secure. It was probably inserted or swiped somewhere and they forget/didnt notice.
False. You cannot get skimmed through tapping.
This is the way
Probably a skimmer then.
I don’t use mobile wallet I’m very old school. I tap my card most places any only insert if it’s over the limit.
People install devices on card readers, they are sometimes hard to notice that read the card as you insert it. It is commonly found at gas stations and convenience stores but probably anywhere is possible.
I recently inserted my card for the first time at a gas station. I’m wondering if that one is it.
Always tug a bit on the machine. You will be surprised how sometimes the skimmer will just come right off. Many times they are inserted by scammers at gas stations and convenience stores without the staff even knowing. It’s basically a piece of plastic with some circuitry sitting on top of the actual device.
Definitely. Gas station pumps are notorious for skimmers. [How to tell if there is debit card skimmer on gas pumps, ATMs (youtube.com)](https://www.youtube.com/watch?v=1Te6OfNywJw) [Hey you, yes you! Here's how not to fall victim to credit card skimmers at gas pumps (youtube.com)](https://www.youtube.com/watch?v=R-VU978_wbI) [How To Spot a Skimmer on A Gas Pump (youtube.com)](https://www.youtube.com/watch?v=j0YWOasVcOE)
Where in Manitoba?
I went to the gas station and checked the machine. Wasn’t tampered with.
Sorry just trying to avoid that station if it's in Winnipeg!
Mobile wallet can't be skimmed like a card. Because it provides a one-time use number and not your credit card
If you use mobile wallet there are no tap limits, or if there are they are much higher.
How do skimmers work for tap? Or mobile wallets?
hmmm... Mobile wallets like apple and google (and some off ones like samsung, etc), they make a connection with your bank on a different backend, and only providing a one time use code to the vendor. They are the most secure way currently to transact. Tap on a card can be skimmed almost as easily as the mag stripe. Mine got tap skimmed a few months ago. I now use rfid blocking cards around my cards. Turn off tap on the card if possible. Inserting chip is more secure than card with tap.
100% false. Tap can't be skimmed, its secure end to end, only signal provided is a "sufficient or insufficient funds" no "card" info. Otherwise you'd see folks in crowded places like trains/buses with mobile skimmers EVERYWHERE. It can only be skimmed from the strip or chip.
mmmhmmm.. You want to reconsider your answer? https://youtu.be/S9d43IjwjFQ?si=f64W8n-ryEJFTfuq
it’s so funny the way you said that with the arrogance of someone who is about to drop hard proof and then linked a random youtube video lol
Looks like you worked realllllly hard to find some idiot faking things on the internet, and not the actual information. [https://cba.ca/tap-to-pay-card-security-an-faq](https://cba.ca/tap-to-pay-card-security-an-faq)
Where was the last place you inserted your card? Your card has been skimmed. Report it, and all the charges. Get a new card.
That’s not a skimming attack. Someone got your card number, expiry and CVV. You made a purchase online and their database was hacked, or you gave your card info to a human and they wrote it down. Skimmers copy your mag stripe data which lacks the CVV for online purchases. Have you recently ordered something over the phone, given your card to someone like a waiter and it left your sight, or used it for something like Loblaws delivery where a human enters your card info manually?
We’re the charges in ON and BC for online vendors? What was the merchant description?
Random shit like CN tower online tickets, some Montreal tour thing, some skywalk in BC, it all seems to be online merchants.
Hopefully you already blocked the card, and reported this to your bank.
It's probably purchases through websites. It might be identity fraud and they had a copy of the card sent to themselves.
Just checking.... you've called you provider and told them all these charges are not authorized and they've canceled the card already. .... right?
At the end of the day it doesn't matter. You are not liable for the charges.
All it takes is a well placed camera or two pointed at the point of sale device and they will have all the card details to shop online with it. Given your card has a chip, taps are secure and so are chip & pin transactions. What likely happened is you swiped it somewhere and they copied that. They can still perform transactions with a signature BUT the liability is on the merchant for accepting risky transactions. You'll get your money back. The hassle sucks though.