Stay one step ahead of scammers and find out how to protect yourself from potential fraud and unauthorised activities.
At YouTrip, your financial security is our top priority. Lately, there’s been a new type of online scam known as ‘Declined Transaction Scams’. We’re dedicated to keeping you informed – so here’s everything you need to know about how these scams work and how to stay protected.
How the scam works:
1. The Bait
Scammers create fake advertisements on social media platforms and search engines that lead unsuspecting users to fake e-commerce websites mimicking legit platforms.
2. Data Phishing
Once there, victims are prompted to enter their card details to complete a “purchase.” Scammers then steal this information and display a fake two-factor authentication (2FA) confirmation page to make the transaction appear secure.
3. Card Exploitation
When victims enter their OTP on the fake 2FA page, scammers use the stolen details to link the victim’s card to their own mobile wallets, such as Apple Pay or Google Pay.
Victims are then shown a loading page indicating the transaction is being processed, only to receive a “declined” message due to supposed processing errors. In reality, the scammers have successfully phished the card details and added the card to their device. The scam page then prompts the victim to retry or use a different card, perpetuating the cycle as the scammers attempt to steal more card details.
*Do note that YouTrip does not send OTP for transaction confirmations. Instead, you must swipe within the app to approve 3DS authorisation.
4. Unauthorised Transactions
Once the card is linked, scammers use these wallets to make unauthorised purchases, often depleting the victim’s account. Most of these unauthorised transactions will originate overseas.
Red flags to watch out for
- Redirecting Social Media Ads: Ads that lead you away from the app to external websites are a major red flag
- Too-Good-To-Be-True Deals: Be cautious of offers with prices far below market value or massive discounts that look too good to be true.
- Unsecured Websites: Look for “https://” in URLs. If it’s missing, think twice before entering your details as it can/may indicate a fraudulent site.
- Suspicious URLs: Be wary of strange website names or addresses with spelling errors
- Urgent Prompts: Scammers often create a sense of urgency to pressure you into completing transactions quickly.
How to protect yourself:
1. Stay Alert
Always read SMS OTPs carefully. For example, if you’re making a purchase but the OTP message indicates it’s for adding your card to Apple Pay, this mismatch is a clear red flag. Always ensure the action you’re performing matches the details in the OTP message.
2. Verify before you buy
Always confirm the legitimacy of websites before entering your payment details. Ask yourself: Have you purchased from this site before? Does this site look secure and legitimate?
3. Monitor your accounts
Regularly check your emails/SMS for suspicious activity. YouTrip sends instant alerts for transactions or critical actions, like attempts to add your card to a mobile wallet.
4. Enable security features
Set transaction limits and push notifications for real-time updates.
5. Think before sharing
Never share your OTP or card details with anyone, even if someone claims to be from a trusted organisation
6. Reporting suspicious activity promptly
If you suspect fraud, lock your card immediately via the app or call our customer service team to block your card or activate the kill switch. This stops unauthorised use while we investigate and safeguard your account.
Find out more about common scams and how to safeguard your account here
Our commitment to your security
At YouTrip, we’re constantly enhancing our fraud detection systems to safeguard your finances. Our fraud detection system operates 24/7 in real-time, using advanced algorithms and machine learning to identify unusual transaction behaviours and patterns.
Here’s how we keep your account safe:
- Comprehensive Monitoring: Every transaction is analysed against blacklists, velocity, threshold limits, and other risk indicators.
- Real-Time Notifications: You’ll get instant alerts whenever a transaction is made, so you’re always in the loop.
- Step-Up Authentication: We use 3DS-2 for all transactions (as long as the merchant supports it) to add an extra layer of security before authorising payments.
- Layered Defense Approach: Our multi-layered strategy combines automated detection, human intervention, and account controls to reduce fraud risks effectively.
- Proactive Fraud Alerts: Our team actively tracks emerging fraud trends, updating our systems to counteract new fraud schemes as they develop.
Staying cautious and informed is key to staying protected. Let’s work together to stay one step ahead of scammers. Stay safe!
Find out how else we’re safeguarding your transactions here