Well I am no expert in these matters and I’m sure the reality is significantly more complicated
than just “getting a grip”
But, over 10 days and a number of transactions (that we know of from here) I would imagine there’s a trend which they can investigate.
I guess, perhaps naively, I figured by now they would’ve identified how this is happening and stopped it from reoccurring.
Getting a grip of what? Payments to TikTok?
It’s not as easy as that.
It’s not just TikTok (or ‘companies’ pretending to be TikTok) - there’ll be thousands of attempts to crack Monzo - all caught behind the scenes and batted aside. Leaving customers to concentrate on daily life. After the Ticketmaster issue, my confidence in Monzo increased greatly.
There’ll be so many that some will undoubtedly get through the firewall - but someone will spot it (customers) and if reported, Monzo will deal with it properly.
My Wise card - last used in July 2018 was subject to a “Card verification” on the 16th by a “Verve Systems Llc” (manual entered, online) and then on the 17th a charge of 50 PHP (Philippine Peso / 0.75GBP) was attempted to be made to transport company called “Grab” (again, manual entry Online: but blocked as I had already frozen the code): needless to say, I didn’t make the charges, have the card and can only guess someone tried an enumeration attack and was successful.
I suspect fraudsters may just be guessing card numbers and trying them against merchants which don’t do proper cardholder (3D) verification.
I’m afraid enumeration attacks are definitely possible and quite common.
Particularly for an active card check at some merchants you only need the card number - no CVC or expiry date.
Once you got some active card numbers you can further enumerate CVC and expiry dates.
Happens quite a bit.
Have a look at this blog post too:
Do you have a link please? And are we talking Emma (fintech aggregator), Emma (mattress maker) or something else?
Edit: I have discovered something called Google!
Was a bit confused about why I hadn’t heard about it and how Emma.app would be storing card details!
I just wanted to report that I was charged £84.89 for TikTok yesterday (20 Oct) although I have never used TikTok. 
The subsequent TikTok transactions (£212.25) were all declined since there wasn’t enough money left.
I froze the card within 5 mins, then it was blocked after I reported to Monzo. Now I’m waiting to see when Monzo does a refund.
This morning, a new bunch of transactions for 95 USD were applied and thankfully none went through due to the card being blocked. Seems like within 24hrs, the card number was widely shared by hackers.
Moral of the story:
Always keep your card frozen if you use it online.
I had the same thing happen yesterday, 212.25 to tiktok, then the same amount moments later, and then a series of attempted payments elsewhere such as “Reverb.com” “Newblack.se” and more. My card has been completely rinsed, and the Monzo fraud team have not got back in touch. Over 24 hours waiting now, this needs sorting as people have bills to pay, mortgages, travel, food etc.
Just had the same thing happen to me this afternoon, two charges, 212.25 and 84.89, the same as others on here. Followed the advice, blocked my card and reported these transactions as fraud. There is obviously some sort of security failure going on here as they went out without asking for authorisation. Wallet and phone in my possession all day, biometrics on.
I had this happen to me yesterday at 4:20pm so I froze my card. And had more try to come out again right now at 4:20. It’s deffo like an automated system sort of thing
Last night the same thing happened to me. First a payment of 84.89, the a second of 212.25 both to tiktok which I’ve never used. So reported to monzo, but it’s sad to see this happened to others as well.
Yup, hence my comment around them “getting a grip” of the situation. Perhaps they have and if so maybe @AlanDoe can update.
But it’s not a good look that this keeps happening (and there’s limited transparency that things are being worked on, if Monzo want to be seen as a “real bank”)
FYI, I’ve escalated this (and a few other reports) to our FinCrime folks - who I’m sure are already all over this if it’s been reported via chat too.
Thanks for the update on this! Not impacted myself, but keeping an eye out. Hope that with the data Monzo have, they might be able to identify some correlation between the impacted accounts.
Or use virtual cards 
I wish it was possible it freeze virtual cards, I’d definitely freeze the one I use for online shopping most of the time if it was an option.
I think you may have read too much into what I said. It’s another option that’s all 
How do you disable or freeze online payments only & not freeze the card entirely?
I think you’re right and I agree. I believe Chase allow this granularity (although I might be wrong).
Edited - it seems Chase have options but not to freeze online payments unfortunately.