Leave a legacy.

Require 2 factor authentication to sign up for payforit texts

By: andy69 | 12-08-2018 18:00

A lot of people are asking about being charged for payforit texts when they didn't subscribe to them in the first place. And how to stop further charges and get your money back. One way would be to require that the initial text is not charged for but is replaced with a text asking you to authorise the subscription. If you want to receive them, then you just follow the instructions in the text to authorise it. It could be follow a link or reply by text. After authorisation, you receive the original text and are charged. If you don't authorise it, you just ignore and no charges are applied.

-

Comments

by: erisds
on: 10-04-2019 13:21

I keep being told by Giffgaff support that I have to comment here if I want to be heard, so here I am.

It is absolutely imperative that Giffgaff adds second or multi-factor authentication on their online accounts immediately. There are now at least 7 ideas that cover this:

https://labs.giffgaff.com/idea/16713916/2-factor-authentication

https://labs.giffgaff.com/idea/16712158/allow-users-to-secure-their-accounts-with-2-factor-authentication-2fa

https://labs.giffgaff.com/idea/16701487/u2f-to-protect-personal-data-on-my-giffgaff-with-2-step-2-factor-authentication-option-for-my-giffgaff-logins

https://labs.giffgaff.com/idea/16712363/require-2-factor-authentication-to-sign-up-for-payforit-texts

https://labs.giffgaff.com/idea/16707920

https://labs.giffgaff.com/idea/16703325

Many of these are over 4 years old. It's very clear that no one reads or moderates this board.

That's fine - it's up to you to choose whether to moderate the board, but if you're not going then your agents need to stop telling people to raise ideas for things that have been open for 4 years already and be honest about the fact that no one cares what's written here.

by: bensim
on: 05-04-2019 10:11

Important - please do this soon

by: andy69
on: 29-03-2019 19:09

Wow, 300 votes! Thank you for your support for this idea. It's been some time since giffgaff said they were looking into it. I wonder how long it is going to be before they implement something to protect their customers from this blight.

by: soapysuds65
on: 24-03-2019 13:26

just been scammed for the second time £3 for the first time £4:50 second time. Yes they seem like meagre amount but that's not the point. The scummers that do this are probably aware that they've pitched this scam at a point where they can get away with it, because, who is going to spend so much time in order to get this type of money refunded. This needs to be Stopped. If the phone networks and providers were banks they would be liable for not protecting people information and allowing these third parties to obtain money by the means of fraud and deception.

The 2 factor authentication system should be in place to protect people and combat such issues. I am all for it. It begs the question:

If giffgaff has nothing to gain by not intergrating such processes, which are widely used elsewhere, then what have they got to lose? Apart from customers.

by: ngreenall
on: 21-03-2019 19:00

I haven't given out my phone number or clicked on any websites. I have been scammed out of £4.50.

Its a disgrace that this goes on in 2019 in the UK.

by: chrisbaldy
on: 21-03-2019 17:54

Changed my number and got scammed again. Don’t access these sites, don’t want these services and GiffGaff just say I am responsible for charges after their sytem has been comprimised and numbers released to criminals. They take no responsibility for looking after customers money or data. 2 factor autherisation is well over due. Although PSA recommendations may have something to do with this bright idea. Can’t keep changing numbers and can’t have credit.

by: helen_starkey
on: 17-03-2019 20:28

great idea

by: davidjsmith67
on: 03-03-2019 08:36

More items to consider:

1. Add an option to "Air Time Credit" usage to allow or disallow Premium Rate Texts - i.e. like an Adult Content filter. That would stop this right away, as you (giffgaff) would reject the charge request from the mobile payment provider where we (the customer) have clearly said "no" to premium rate charges.

2. Use an anti-spam requesting number filter.

If you know the "mobile payment providers" e.g. mGage are requesting charges from a particular origin number, then stop the charge being taken and validate their request with your "paying customer" before you (giffgaff) allow the charge to be deducted from air time credit. If we (the customer) says "no" then stop the charge! The mobile payment provider will then have to push this issue back to their customer to resolve.

3. Use an anti-spam text filter the premium rate messages at the "text" level. These unwanted charging premium text messages appear to have exactly the same content, e.g. Just4Life Nexgen Ltd. If you detect the "suspicious" content in the message, then ask your customer to confirm the charge before it is made.

4. Retrospective authorised billing. Assuming the customer has air time credit on the account, only allow the mobile payment provider to be paid after your customer has confirmed the charge, e.g. at the end of 7 to 30 days. If the customer rejects the charge, the mobile payment provider is not paid and their client has to take proceedings against their customer to recover the money they believe they are genuinely owed.

5. Premium rate billing account. When a premium rate text is detected by giffgaff charge this to a separate "premium rate" account (like air time, but solely for premium rate texts), where credit is allocated by the customer. If the value is zero then the mobile payment provider cannot charge the account.

by: soapysuds65
on: 24-03-2019 13:35

Spot on. These are great ideas. Separate Air time account and premium rate account. Premium rate content filter - options box

by: gvmhb
on: 25-02-2019 18:13

Very good idea.

by: maccaroon13
on: 23-02-2019 17:53

Indeed!!! I have 4 at least of these in a short period of time and today another saying Payme. Would appreciate any help instead of bleeding money away to something you don't want.