Monzo spoofing scam: how we helped a victim get their money back

it may be that you entered a digit incorrectly or was incorrectly given to you. Even so recent changes in the law mean that the banks must trace and refund the money. At one time if someone paid say £500 into your account by mistake they could not make you pay it back as no crime had been committed by you, however the moment that you spent it or transfered it a crime was committed and action taken. Now i am sure they just take it back as it should always have been.

After a long delay, the larger banks now use ‘Confirmation of Payee’ to identify where the name of a payee does not match the number and sort code for an account. Prior to this, one digit wrong in an account number or sort code could mean that a payment could go to John Smith instead of Ian Jones. Here is information about CoP from HSBCs website: https://www.hsbc.co.uk/help/confirmation-of-payee/ Even now, not all banks have implemented CoP though there is pressure to make them do so.

It has been said before that implementing CoP by every bank, large and small, may not be the simple job some think. I would like the banks to explain just what is involved. CoP involves two banks, your own and the payees. It may be different banking software needs to be changed to accommodate the change. Just a guess. But I do remember reading of complications when it was being proposed. Lets just have some facts.

Before CoP you could check the correctness of a payee by sending £1 initially and checking it had been received by the right person.

Perhaps CoP should have been a requirement at the time we were provided with online banking facilities. A reasonable person would assume that if they made a payment to a named person or business there would be way of ensuring that it would not go to a different person.

Why did banks not insist on customers making trial payments before transferring larger sums as a temporary solution until CoP had been implemented?

Much has been said about the need for customers to behave responsibly but perhaps the banks could set an example. I’m very pleased that banks have done so much to help their customers protect their money over the past couple of years but – in my opinion – this could have been done sooner.

Perhaps CoP should have been a requirement at the time we were provided with online banking facilities. ” As I suggested above it may be down to compatibility of the various banks disparate software systems. If so, considerable work may have been required to get a common system that worked. Best to criticise when we know the facts?

”Why did banks not insist on customers making trial payment”. Many people did realise this was a sensible way to handle significant transfers to a new payee. People do have to take some responsibility for their actions.

However we need to look at how to improve things, not use hindsight.

With respect, I’m entitled to my own views. I am not alone in believing that CoP should have been introduced sooner: https://www.moneysavingexpert.com/news/2020/06/confirmation-of-payee/

Of course you are, as are we all. I was saying I would like to see the facts before criticising, and we have not, to my knowledge, been given the banks views. If they have deliberately avoided introducing CoP for no good reason then criticism may well be due.

I also am very pleased that banks have done much to help their customers protect their money over the past couple of years, but I am also mindful of the fact that the banks have also closed branches and withdrawn facilities at an unprecedented rate. I would say half the bank and building society branches in Norwich have closed over that timescale and the position in the smaller towns and larger villages is far worse.

The closure of branches in particular has made it much more difficult for millions of customers to manage their financial affairs. I know people who always go into their bank branch to make any substantial payment transfers and now have to travel further to continue doing so; they will not do it on-line.

Who do you bank with? None of my bank’s are cold calling me…

Nor mine. If they wish to communicate they send me an e-mail informing me that there is a message waiting in their on-line banking site to which I would have to log-in through the secure process in order to access it. Any messages on-line have been responses to enquiries I have initiated. I cannot recall any spontaneous or un-anticipated messages.

If your bank persists in cold-calling you, either formally request them to stop doing so or cancel the telephone contact facility. If urgent contact is required, they should agree to send an e-mail [containing agreed identification details] to which you can respond securely [i.e. not via a link] or by telephone to a named individual involving a reciprocal ID check.

To Trish B, were it not that there was a follow-up in writing, apparently, I’d wager that the cold calls had scam written all over them. What information could they possibly have been asking for in a letter??? If scammers are now progressing to faking letters / letter heads / HO addresses this is taking scamming into a new dimension. Otherwise a case for switching bank accounts like quick.

I should add that as a customer of First Direct, whose operations have been built on telephone banking, I have on occasions had calls from the bank but mostly pre-arranged. I seem to remember that some form of personal ID was called for each time.

Trishb, surely the sensible thing to do is call your bank and find out what information they want from you. Make sure you call on a trusted number either from a bank statement, another trusted document or the back of a bank card.

Like Ian, I am with First Direct. They haven’t had reason to call me for a few years now, but if they do I always tell them I don’t go through security unless I instigate the call so will call them back. They understand completely and put a note on my account so I am put through to the correct department when I call back.

If they have to call you back, either do the above or if they are really difficult to get through to, give them a password so you know it is definitely the bank calling you.

You always need to make sure the line has been cleared when calling back just to be sure you haven’t been talking to scammers. So call back on a different phone, call another phone in your house and make sure it rings or call someone you know and hear their voice.

We want banks to be more vigilant with who they let set up accounts therefore making it tougher for scammers to operate, so we shouldn’t moan at any extra steps or info they request that help keep our accounts safer.

Give your bank a call. That way you will know for sure if the request is genuine.

In my case I was called by the “Nationwide Fraud” dept, the caller at no point asked me for any information as he had it already. Obviously he obtained my information somewhere, maybe from hacking other internet sites, it certainly wasn’t from me. I lost around £18000 and haven’t seen a penny of it back.

Mike – I am intrigued to know why you were called if the fraudster already had all the information required. What do you think they were after, which they didn’t already have, that would enable them to successfully raid your account?

First Direct customers will be aware that the “first line of defence” (unquote) is now their reliance on voice recognition technology. This should make it all the less likely, one would think, that they would “cold call” customers. A hacker doing this would have to have access not only to the technology but also to the interface with the customer’s account. Quite a tall order unless I have missed something.

What negligent part did Monzo play that contributed to you losing money? Why do you think anyone, particularly someone you did not know, would double your money?

Hi Abraar – Your bank may be able to recover the money from the bank used by the scammer.