NAKUMATT SMART CARD ADVISORY
Did anyone see the NAKUMATT advertisement(Daily Nation May 1,2007) in the paper?The advertisement warned Smart Card holders from disclosing their Bank account details to callers who pretended to be Nakumatt employees.It seems to be a crack in the smart card and receipts system that crooks want to exploit.
The Nakumatt till receipt indicates the following details at the bottom(if you use your SMART card):
-Name of smart card holder-Smart Points givenIf you pay by credit card/Debit card plus use your smart card, the following details will be on your till receipt
-Name of smart card holder-Smart Points given
-Full Debit/Credit card number BUT not the name on the Debit/Credit cardSo by getting hold of your receipt. Someone knows your name and the full number for your Credit/Debit card, But not your address or the CVW code of your card
What you didn't know
To use a Credit/Debit card online you DONT need to have the card physically present you just need to know the card number and its Card security code.
Card security code refers to the 3 digit numbers at the back of your credit/debit card that are on the signature strip. Take your card flip it over and look at the signature strip. You will see a series of numbers. Look for 3 digits that are together. Those three are the code.
Card companies developed this code to prevent people from using other peoples' cards online using stolen Credit/debit card information.The code forces you to physically have the card when carrying out the online transaction.Most online sites will ask you for this code in addition to the usual details when paying for an online transaction by card.
I think that someone must have found a way to obtain SMART card details. Then he calls card holders for the bank information/address and Card code.
How to protect yourself
-Destroy the portion of the receipt with your name and credit/debit card details
-Use slightly different details for your SMART card and other loyalty card programmes from your bank details. For example, put a fictitious date of birth on your loyalty programme applications. Use a different address for your Bank account and other applications.
-DONT give out your Bank Account details to anyone over the phone.-Watch your bank statements and report any suspicious transactions.
What Nakumatt should do
The counter till receipts shouldn’t display your full Credit/debit card numbers and your name. Part of the numbers should be obscured.This is what some supermarkets outside Kenya do in the UK do. Local ATMs also obscure part of your Credit card number (Pesa Point and NIC bank do so for Credit cards).
Other than the above.I am happy with the SMART card and will continue to use it.
Here are a few interesting links on the subject:
Here is a link to the Nakumatt notice on their site.