https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9069995
AmyG
Link Copied
Contact apple as well asap
4
Lut Gaya Mein Please Help
- 5681
- 90
-
- Last Comment
Yesterday's on My Flipkart Account Some One Purchased Apple Gift Card worth Rs.16000 with Kotak Credit Card
On my primary phone I never installed any 3rd party app neither I clicked on any link and checked any suspicious app after transaction
I have saved my card details on Flipkart
I received the OTP but never shared
I have reported this kotak bank as well as Flipkart but both ask time to investigate
I am now opening complaint on cybercrime also
I want to know how this happened?
Is there chance of getting money back?
What I can do more?
How flipkart allowed gift card purchases using credit card?
Email Id where gift card sent [email protected]
Expired
89 Comments
|
35 Dimers
- Sort By
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070009
Flipkart doesn't use 2FA for login (This is bound to happen with predictable passwords)
1. You can use credit cards for gift card purchases (No restrictions)
2. CyberCrime report won't be of much use but do it anyways (Might help with the next step)
3. OTP isn't shared (Mandatory for domestic transactions) so you can always file a chargeback with bank and get the money back (high chances, even if FK doesn't help). But its possible that your phone got compromised (OTP sent to fraudster via Malware/Spyware app)
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070038
I have checked even with spyware scanner no problem found
Even i check the device administration, accessibility and develper options also
If i assume that gmail compromised then no login activity from other devices
It is just 3 location 1 phone and 2 pcs which is true
View 13
more replies
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070018
and dont flopkart it have all the kinds of problem now
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070034
May be your email id is compromised here. Buyer must have taken otp from email id and Flipkart now allowing login through otp so he has access of your email id for sure if you haven't shared phone/otp/3rd party screen share.
Your email password may be poor and 2FA verification is not on in your email.
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070041
No details about it in mail neither from Flipkart nor from gmail
View 4
more replies
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070132
Did u ever gave ur phone for calling to someone.. If this hppnd may be he or she diverted ur mags to his or her number.. So they can track ur otp
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070147
Not given
I checked my phone app list 3-4 times the only app see are installed by me only from Play Store
Also never installed app like anydesk or team viewer
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070144
Sorry for your loss bro.
Kotak is very well known for these stuff. Has happened with me few years back (in my case, it was debit card, I had never ever used that debit card, it was lying in my wallet since the day I had got it with kit but still somehow it was swiped at some posh hotel for ₹7000. (Not trying to demotivate but I had raised complain in the Kotak branch within 40 minutes for this transaction & still they couldn't help after taking 2-3 months of time).
Back then I was not aware about Banking Ombudsman (It happened around 5 Years back) or I would have escalated to them. But now, since we have them make sure you raise complain with them If bank doesn't help you in 30 days (make sure communication with them is very documented cause you will require it while dealing with Ombudsman).
Last but not the least, I don't have CC but meanwhile I would recommend you to pay this amount whenever bill is generated cause as far as I know this thing can do a big dent on your CIBIL score while might create a irreparable damage in the future.
Kotak is very well known for these stuff. Has happened with me few years back (in my case, it was debit card, I had never ever used that debit card, it was lying in my wallet since the day I had got it with kit but still somehow it was swiped at some posh hotel for ₹7000. (Not trying to demotivate but I had raised complain in the Kotak branch within 40 minutes for this transaction & still they couldn't help after taking 2-3 months of time).
Back then I was not aware about Banking Ombudsman (It happened around 5 Years back) or I would have escalated to them. But now, since we have them make sure you raise complain with them If bank doesn't help you in 30 days (make sure communication with them is very documented cause you will require it while dealing with Ombudsman).
Last but not the least, I don't have CC but meanwhile I would recommend you to pay this amount whenever bill is generated cause as far as I know this thing can do a big dent on your CIBIL score while might create a irreparable damage in the future.
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070196
-Contact apple, they are good in support, they will cancel these gvs and initiate refund.
- make a chargeback on ur cc.
- log a case with fk and change ur password on immediate basis.
- dont panic
- log a cyber complaint
:- for future
- always make transaction capp on cc or even disable the transactios , and alter it only when u use.
- do not save card online, i know it is inconvenient but safety is not for convenience.
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070197
On cybercrime online how many cases I have to open while logging complaint it is asking details for 1 transaction only but my transaction are 3
What to do?
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070293
This has to do something with kotak 2 years ago even i got a message that my international transaction got declined due to card being blocked since then ive not used that bank account at all.Im very aware of all the apps that has suspecious permisions havent stored any card on any site too and ive various other banks which havent faced anything like this till date.
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070456
Logging an online FIR on cybercrime portal is easy. Do that immediately with snapshots of all details you have. Approach Flipkart and your bank with a copy of FIR which will pressurize them to take some action
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070499
Kotak is a dubious bank. I m having a savings account with them l in addition to a credit card. Their employees probably leak out/sell the account details of customers for fraud.
I also keep getting calls trying to disclose my Kotak account details from fraudsters. I have many other accounts in other banks. Never got a call for those banks. I also often receive UPI collection links linked to Kotak bank for unknown transactions related to air ticket or train booking. This means they are already having bank and card details, only they are unable to access OTPs/PIN
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070821
CVV is not saved in app right? How did the hacker get access to that?
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070835
Now after new rbi guidelines even card original number is also not saved in app/website(those last 4 digits only for your convenience), tokenized form is used to save card details so even if website is hacked those card details can only be used for shopping on that particular website & nowhere else.
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070850
Pro tip: always keep the online usage as turned off. Turn on when needed. Also if you are too lazy to do that like me, change the maximum transaction value to 2000₹ or as required and international usage disabled if not required.
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9071723
This is best thing to do actually 
.
Most of our daily transactions would be less than 1000 or 500. So set that as the limit.
If need to increase keep the app and mobile data ready to do that or do it one day in advance
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070949
I believe after saving ur card details on ecommerce portals as per RBI Guidelines, you will not be required to enter the CVV number for making the payment. Only by selecting the saved card identifying with last 4 digits payment shall be initiated with only OTP as the last security.
I feel this is more unsafe than the earlier practice. I have not yet opted for tokenization due to this.
Can anyone confirm how payment is actually getting processed after it is saved as per RBI Guidelines. (WIth or without CVV?) Only with OTP?
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9070990
CVV is always required unless it is a bug in the website. Card tokenization simply means that instead of your actual 16 digit card number there is a randomly generated 16 digit no. linked to your original card no. which is used so even if the website is hacked the hacker gets that randomly generated 16 digit number & not your actual card no. & this 16 digit no. is only valid on that site for doing txn.
View 9
more replies
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9071003
Dispute the trans. With kotak
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9071425
But how can the scammer received OTP & knew the card CVV. He must have access of your email ID for OTP.
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9071591
Hey bro please set a strong password on Flipkart since they don't have 2FA. Elsewhere set up 2FA wherever it is available (bank accounts, email accounts etc).
Really sorry to hear this. I hope Kotak or Apple reimburse you once you file a chargeback or tell your story.
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9071706
May be some compromised apps are running in background and stealing OTPs. Play store downloaded apps can also be compromised.
Use Greenify / Hibernator app to stop background running apps. Also stop Auto launch of apps if there is option in settings. It will save your battery as well as remove unnecessary app notifications.
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9071926
can u go to permission manager in settings, tell us which apps got read sms permissions
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9073251
Check your email account and see if your mails are being forwarded to any other id.
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9073452
operating your bank registered email id without 2FA is asking for trouble check gmail login history there is bound to be a rogue entry 
https://www.desidime.com/discussions/lut-gaya-mein-please-help?page=1#post_9080955
Where can I find the last 4 digits of the card used for an order in flipkart?
Click here to reply
Reply
