Yep, the email access thing is bad - but you should be able sign out all connections remotely before requesting a new magic link to avoid them getting that.
2 Likes
This is correct, just a video selfie which the person is guaranteed to fail at if the identities of course donât match.
You can call Monzo to remotely log you out too.
As its an 0800 number you can this anywhere, even at a payphone.
Maybe I got unlucky but was unable to call Monzo support when I needed it, I stayed 20 minutes on the phone with no answer
1 Like
Of all the years Iâve been on this community and countless topics on fraud etc. Iâve never seen a case of someone peering over their shoulder to get their PIN to then steal their phone and empty the account. And weâve had some bizarre stories too!
As mentioned, you need the device PIN and your card PIN to do this. And to also not trigger a fraud check at Monzos end for suspicious account activity when you suddenly move every penny out of your account to a new payee.
I find it hard to believe someone would get close enough to see you do this anyway, and that you wouldnât immediately notice and move away from the person. You certainly wouldnât carry on. Choose wisely where you decide to manage your finances and it wonât be an issue.
1 Like
It could just be that you called at a time of day where it wad extremely busy.
I call companies after the afternoon and refuse to call in the morning or else you wonât be going through.
I think you should probably open your views to outside of Monzo forums, phone/pins being compromised can easily happen to those in the real word. Here I am complaining this has happened to me and have personally heard of it happening to many others. I really find it strange youâre discounting the problem, maybe you should consider the case of it happening to you?
And to also not trigger a fraud check at Monzos end for suspicious account activity when you suddenly move every penny out of your account to a new payee.
I also find it quite worrying that youâre accepting that Monzo fraud protection should be part of your standard security and not advocating for some form of prevention in the first place. The exact motivation of this post was that Monzo security failed me. I had several thousands spent on my card whilst I thought on my account was secure without Monzo batting an eyelid, I did not receive any email/phone call of suspicious activity and only knew of the damage when my card was declined due to lack of funds. I really hope Monzo fraud protection works better if youâre in a similar situation in the future.
This would happen via Google Pay/Apple Pay⊠this would happen with any bank as well if apple pay or google pay was used.
During the same incident American Express fraud protecting kicked in after ÂŁ100 pounds spent as they spotted the activity very quickly.
Are you using a 4 digit pin for your phone?
Increasing your personal security is your best option. Monzo are not going to add more hoops to jump through because for the vast majority, itâs not an issue.
Why would you be against additional security measures to keep Monzo secure? Cleary they would be opt in like the current âmeasuresâ are and I have always had a 6 digit code.
Because I donât want more hoops to jump through to manage my money.
Opt-in makes it pretty much pointless except for people like yourself who have been caught out and the paranoid.
1 Like
All current measures are optional.
So youâre against a measure for people that would protect people that have been âcaught outâ, so clearly there is an attack vector but youâre fine to just let it stay open?
Thatâs because it is 
Someone stole your phone, knew your phone PIN and your card PIN?
Did you make them both the same?
just the phone pin
No they arenât.
It doesnât matter what I think, it wonât happen. Any âthird pinâ would be used in public and the same thing would happen again.
Maybe you should delete your banking app from your phone every time you leave the house?
If someone has your pin and your phone, they can use apple/GooglePay whether your banking app has one password or fifty.
And if this is the case, did you turn off notifications for all those too? I get one everytime I spend using Google Pay just like I do from Monzo.
In Google Pay I can disable the card too, just like I can at web.monzo.com.
1 Like
Did you see my point 3, the card can be un-frozen in the app with no authentication.
Not in Google Pay.
In Monzo sure, but your contactless is capped and then youâll have to enter the card PIN. Youâd not be able to spend ÂŁ1,000s via contactless.
Apple Pay, (not sure about Google Pay) is linked directly to your card with no cap. Attempting to freeze the card to prevent spending is fruitless due to point 3.