Monadnock Community Bank reported a breach to the New Hampshire Attorney General’s Office involving one of their customers, a New Hampshire resident.
According to the bank’s notification of September 23, the customer reported six fraudulent transactions on his/her MasterMoney debit card involving Sharaf Travel in Dubai, UAE. When the bank tried to get the funds returned as unauthorized transfers, though, the request was declined because both the unauthorized user and the merchant were registered with MasterCard’s Secure Code Program.
There was no indication in the report whether the bank restored the funds to the customer’s account, but the bank suspects the customer’s card data were acquired from a hack of some unknown merchant.
I think that’s the first time I’ve ever heard of a request for a return of funds refused for that reason. Have others heard similar reports in other cases?