Bogus AC charge on my Visa Account
#31
Join Date: Dec 2008
Location: Delta, BC
Posts: 1,646
A charge of that magnitude could cause trouble for someone close to the credit limit on the card. I'm surprised that VISA didn't offer an immediate temporary credit until the AC credit posts to your account. Also, you shouldn't be charged interest on the amount in the interim.
VISA provides some back-end security and fraud detection algorithms, but it is the financial institution that is responsible for and makes all decisions with respect to a card account.
So, let's name the financial institution involved as then recommendations on specifics relevant to that financial institution (like card-not-present transaction alerts setup) could be suggested where applicable.
#32
Join Date: Jan 2017
Location: Halifax
Programs: AC SE100K, Marriott Lifetime Platinum Elite. NEXUS
Posts: 4,568
a) A named PAX, which has been ID verified(ish) on previous travel
b) Using different CCs issued to a name different from the PAX, and several transactions from different cardholders CCs
c) Cards from different brands, different issuing banks
d) Travel to/from locations not associated with a different traveler who normally uses the cards in (b)
None alone are a hard block. (c) would make it hard/impossible for "VISA" to detect.
Combined, the named PAX is likely buying tickets fraudulently, and future transactions are fraudulent.
#33
FlyerTalk Evangelist
Join Date: Jun 2003
Location: YYC
Posts: 23,804
Consider a situation where you have
a) A named PAX, which has been ID verified(ish) on previous travel
b) Using different CCs issued to a name different from the PAX, and several transactions from different cardholders CCs
c) Cards from different brands, different issuing banks
d) Travel to/from locations not associated with a different traveler who normally uses the cards in (b)
None alone are a hard block. (c) would make it hard/impossible for "VISA" to detect.
Combined, the named PAX is likely buying tickets fraudulently, and future transactions are fraudulent.
a) A named PAX, which has been ID verified(ish) on previous travel
b) Using different CCs issued to a name different from the PAX, and several transactions from different cardholders CCs
c) Cards from different brands, different issuing banks
d) Travel to/from locations not associated with a different traveler who normally uses the cards in (b)
None alone are a hard block. (c) would make it hard/impossible for "VISA" to detect.
Combined, the named PAX is likely buying tickets fraudulently, and future transactions are fraudulent.
Sure. But still, banks are supposed to have pretty sophisticated algorithms. I have had random charges appearing on credit cards in the past. Banks have often been quite good at detecting before I would. Exception being Amex and airline tickets but that was more than ten years ago. In the current case, I would have expected AC to pass on their suspicion to the bank BTW. Also, the OP says there have been six (!) cases in the past with same CC.
#34
Join Date: Jan 2017
Location: Halifax
Programs: AC SE100K, Marriott Lifetime Platinum Elite. NEXUS
Posts: 4,568
Sure. But still, banks are supposed to have pretty sophisticated algorithms. I have had random charges appearing on credit cards in the past. Banks have often been quite good at detecting before I would. Exception being Amex and airline tickets but that was more than ten years ago. In the current case, I would have expected AC to pass on their suspicion to the bank BTW. Also, the OP says there have been six (!) cases in the past with same CC.
Remember the episode of Sporano's where Tony gets pissed the restaurant is caught skimming cards and loses their vendor account? That is relatively easy to detect. Customer disputes a charge go back to the last 500 charges and +1 each vendor on the suspicious scale. Repeat. Sort suspicious vendor scores, deploy human investigators.
If there is a mass breach of 10,000, 50,000, a million cards, what do you do as a bank? Well, at ~$5/card to reissue... nothing. Most are never going to be used fraudulently, anyway and crushing your customers ability to use their CC isn't going to make you any friends. Maybe a geolock, but at $50 for a CC number, its going to include the zipcode (this indeed was a key point of what made the Target breach especially unusual, not juts in volume but in useful data). Have the bots be more suspicious, yeah, but you can't just block out the card use in this situation.
And then there are one off compromised cards you don't yet know are compromised that you can only apply baseline fraud detection rules too.
A smart user of their new-to-them $50 CC number is going to use it once, and burn it. Gas or groceries is probably a smarter way to use it, but whatevs.
Buying a airline ticket for an apparently un-associated person isn't that unusual you can just block them all as the CC company.
And since different credit cards would be used for a series of transactions, it would be the airline in a position to see the weirdness.
#35
A FlyerTalk Posting Legend
Join Date: Sep 2012
Location: SFO
Programs: AC SE MM, BA Gold, SQ Silver, Bonvoy Tit LTG, Hyatt Glob, HH Diamond
Posts: 44,328
I have purchased tickets for passengers who don't share a name with me, with them on their own PNR.
AC could tell that I was also on the flight, but the card issuer could not. And there's no guarantee I'd always be on the flight.
#36
Original Poster
Join Date: Feb 2007
Location: YVR
Programs: Erstwhile Accidental AC E35K
Posts: 2,916
My card has been compromised 5 or 6 times over its life span (i.e. since I dumped my CIBC Aeroplan card), probably close to 20 years. It used to happen every year or two before the advent of chip and pin, typically when restaurants and gas stations had to take your card away to swipe it. Since they issued the chip and pin cards this is the first or second time it's happened, and first in the last four of five years.
I'm speculating that the perp phoned in to buy a ticket, gave my card # over the phone. Possibly there is a flag in the system to require the passenger to produce the card if the name on the ticket doesn't match the name on the card? When she couldn't produce the card they canceled. One possible scenario. The other possible scenario is that AC just screwed up and charged it to the wrong account - keyed in the wrong number or something. Who knows?
My frustration is that no one seems to be taking this seriously, so it's going to keep happening.
I'm speculating that the perp phoned in to buy a ticket, gave my card # over the phone. Possibly there is a flag in the system to require the passenger to produce the card if the name on the ticket doesn't match the name on the card? When she couldn't produce the card they canceled. One possible scenario. The other possible scenario is that AC just screwed up and charged it to the wrong account - keyed in the wrong number or something. Who knows?
My frustration is that no one seems to be taking this seriously, so it's going to keep happening.
#37
A FlyerTalk Posting Legend
Join Date: Sep 2012
Location: SFO
Programs: AC SE MM, BA Gold, SQ Silver, Bonvoy Tit LTG, Hyatt Glob, HH Diamond
Posts: 44,328
#38
Join Date: Aug 2013
Location: YVR - MILLS Waypoint (It's the third house on the left)
Programs: AC*SE100K, wood level status in various other programs
Posts: 6,231
CC fraud regarding airfares is a big ticket (no pun intended) problem and one of the transactions likely to trigger a higher fraud score for the transaction.
Purchasing tickets for others, purchasing tickets for itens that originate in another city other than your home, and purchasing tickets between / within certain continents/countries can all trigger either the airline's fraud detection threshold or the issuing bank's, regardless of payment network.
True, some banks / networks are more sophisticated about weeding out valid versus invalid transactions, but it's a far from perfect process despite the amount of analysis they try to do. Full disclosure - all of the major CC payment processors have been my clients from a security perspective.
But I've always found it ironic when an airfare purchase gets denied online and I have to call the issuing bank to get them to 'unblock' (or whatever they do) the respective airline so I can go and purchase again. Especially since all my CCs are affinity cards marketed for global travellers and even have little airplanes on them. For me, BMO and TD were worse than CIBC and Amex, but like many things your mileage will most certainly vary.
Marketing versus the real world, I guess.
Purchasing tickets for others, purchasing tickets for itens that originate in another city other than your home, and purchasing tickets between / within certain continents/countries can all trigger either the airline's fraud detection threshold or the issuing bank's, regardless of payment network.
True, some banks / networks are more sophisticated about weeding out valid versus invalid transactions, but it's a far from perfect process despite the amount of analysis they try to do. Full disclosure - all of the major CC payment processors have been my clients from a security perspective.
But I've always found it ironic when an airfare purchase gets denied online and I have to call the issuing bank to get them to 'unblock' (or whatever they do) the respective airline so I can go and purchase again. Especially since all my CCs are affinity cards marketed for global travellers and even have little airplanes on them. For me, BMO and TD were worse than CIBC and Amex, but like many things your mileage will most certainly vary.
Marketing versus the real world, I guess.
Last edited by Bohemian1; Jul 15, 2019 at 12:23 pm Reason: Sppeling
#39
Join Date: Jan 2017
Location: Halifax
Programs: AC SE100K, Marriott Lifetime Platinum Elite. NEXUS
Posts: 4,568
My card has been compromised 5 or 6 times over its life span (i.e. since I dumped my CIBC Aeroplan card), probably close to 20 years. It used to happen every year or two before the advent of chip and pin, typically when restaurants and gas stations had to take your card away to swipe it. Since they issued the chip and pin cards this is the first or second time it's happened, and first in the last four of five years.
I'm speculating that the perp phoned in to buy a ticket, gave my card # over the phone. Possibly there is a flag in the system to require the passenger to produce the card if the name on the ticket doesn't match the name on the card? When she couldn't produce the card they canceled. One possible scenario. The other possible scenario is that AC just screwed up and charged it to the wrong account - keyed in the wrong number or something. Who knows?
But seriously, they are taking it seriously. The charges were reversed. The industry has decided that some fraudulent charges are acceptable, and that some fraudulent charges that are never caught are acceptable, and that some/most fraudsters won't be prosecuted. It is engineered to operate in an imperfect reality.
You seem to wish for a more proactive system. Fair enough. .... Isn't happening.
Last edited by RangerNS; Jul 15, 2019 at 12:49 pm Reason: dropped a [/QUOTE]
#40
Join Date: May 2015
Location: Vancouver
Programs: Aeroplan, Mileage Plus, WestJet Gold, AMEX Plat
Posts: 2,026
My card has been compromised 5 or 6 times over its life span (i.e. since I dumped my CIBC Aeroplan card), probably close to 20 years. It used to happen every year or two before the advent of chip and pin, typically when restaurants and gas stations had to take your card away to swipe it. Since they issued the chip and pin cards this is the first or second time it's happened, and first in the last four of five years.
I'm speculating that the perp phoned in to buy a ticket, gave my card # over the phone. Possibly there is a flag in the system to require the passenger to produce the card if the name on the ticket doesn't match the name on the card? When she couldn't produce the card they canceled. One possible scenario. The other possible scenario is that AC just screwed up and charged it to the wrong account - keyed in the wrong number or something. Who knows?
My frustration is that no one seems to be taking this seriously, so it's going to keep happening.
I'm speculating that the perp phoned in to buy a ticket, gave my card # over the phone. Possibly there is a flag in the system to require the passenger to produce the card if the name on the ticket doesn't match the name on the card? When she couldn't produce the card they canceled. One possible scenario. The other possible scenario is that AC just screwed up and charged it to the wrong account - keyed in the wrong number or something. Who knows?
My frustration is that no one seems to be taking this seriously, so it's going to keep happening.
#41
Join Date: Jan 2015
Posts: 2,918
#42
Join Date: Dec 2011
Location: West
Posts: 3,357
Why do you need the credit card that was used to buy the ticket when traveling? I never necessarily have the same card when traveling. I understood that anyone can purchase a ticket in my name just like anything else. Just don't use my card to purchase your ticket.
#43
Join Date: Feb 2014
Programs: Amex Plat, Hilton Diamond, SPG Gold, Carlson Gold, CM Presidential / *A Gold, Hertz 5*
Posts: 1,648