Originally Posted by
draver
I'm fairly ignorant regarding financial processing risks and safety issues. In the senario you proposed, would the token point the funds to solely your cellular account at TM?
I don't think so - it would be a link between my debit card and T-Mobile's bank. So the link could only be used for T-Mo to pull funds and deposit them in their account. That way it would be useless for anyone else.
It's possible that T-Mo could set it up to then deposit the funds in my account, but I don't know that they would go that far because that step of security seems a little unnecessary given that the token wouldn't otherwise help a malicious third party get their hands on the funds.