On New Year's Day, a resident of Buck, identified as W.S., was defrauded of £250 through a compromised email account. The scammer used a fake request for an Airbnb voucher to successfully intercept the funds.

The £250 Amazon voucher interception

The fraud began when the victim attempted to fulfill a digital request via the Amazon website. According to the report, W.S. used a Tesco Bank credit card to purchase a £250 Airbnb voucher.. Instead of sending the voucher to a relative, the victim entered an email address provided by the scammer, which allowed the criminal to immediately receive the voucher and its unique validation code .

Exploiting a friend's multiple sclerosis diagnosis

The scammer utilized high-level social engineering by impersonating a close friend of the victim. This friend is currently suffering from multiple sclerosis, and the victim had recently engaged in a conversation with her regarding her deteriorating mobility. because the email request for a gift arrived shortly after this emotional discussion, the victim found the request for an Airbnb voucher to be entirely plausible and legitimate.

Tesco Bank's reversal of the initial refund

Tesco Bank's handling of the subsequent dispute has become a central point of contention. After the theft was discovered, the victim contacted the bank to request a chargeback for the stolen £250. The report says that while the bank initially granted the refund, they later reversed the decision, leaving the victim responsible for the financial loss despite the fraudulent nature of the transacton.

The rapid liquidation of Amazon validation codes

Digital gift cards from platforms like Amazon present a unique challenge for modern fraud prevention. Unlike traditional bank transfers, these validation codes can be cashed in or transferred almost instantly, leaving very little time for banks to intervene. This speed allows criminals to move stolen assets through digital channels before the victim even realizes the email they received was from a hacker rather than a friend.

Why did Tesco Bank rescind the chargeback?

Several specific questions remain regarding the bank's decision to claw back the funds. It is currently unknown whether Tesco Bank determined the victim was negligent by failing to verify the request through a secondary communication channel, such as a phone call . Furthermore, the source does not clarify if the bank's reversal was based on the technicality that the transaction was "authorized" by the cardholder, even though the intent was driven by a hacked account.