A compromised card refers to a credit or debit card whose information has been stolen, exposed, or accessed by unauthorized individuals, potentially allowing them to make fraudulent transactions.
Common ways a card can be compromised
Data breaches – Hackers gain access to card information from retailers, banks, or payment processors.
Skimming – Devices placed on ATMs or gas pumps capture card data when you swipe.
Phishing scams – Fraudsters trick you into giving your card details through fake emails, texts, or websites.
Lost or stolen cards – If someone physically steals your card, they may use it fraudulently.
Online theft – Malware or insecure websites can capture your card details during online shopping.
Signs your card may be compromised
Any of the following signs can indicate that your Payhawk card has been compromised:
Unauthorized or unfamiliar charges on your account.
Alerts from Payhawk about suspicious activity.
Your card is suddenly declined.
You receive a notice from Payhawk or a merchant about a data breach.
What to do if your card is compromised
When a card is compromised and subsequently frozen or closed, no further transactions can be processed. Unauthorized attempts will be automatically rejected to ensure the security of your account.
Immediately freeze the compromised card to prevent further unauthorized transactions. The card can remain frozen while investigations are underway.
Notify a Payhawk administrator at your company about the case. Payhawk administrators are authorized to close compromised cards permanently and issue secure replacement cards in your name.
For security reasons, Payhawk will not automatically issue a new card to replace the compromised one.
Request a new card as a replacement for the compromised one from the Cards app in the Payhawk mobile app or web portal.
A Payhawk administrator at your company can issue a replacement virtual or physical card on your behalf, too, from the Payhawk web portal.
Close the compromised card permanently after the replacement card has been issued and any disputes resolved to prevent further use under any circumstances. Note that a compromised card will not be reopened under any circumstances, as reopening it can jeopardize ongoing fraud disputes.
Best practices for handling compromised cards
During investigations, always freeze the card to allow any fraudulent transactions to be contested while preserving evidence of misuse.
Promptly report the case to your Payhawk administrator as soon as possible to initiate the replacement and secure your account.
Only authorized Payhawk account administrators can manage card replacements and closures to maintain Payhawk's secure procedures.
Regularly monitor your account activity feed for unauthorized attempts.
Follow up on fraud disputes to ensure they’re resolved without complications.