So last week I received an unauthorised charge on one of my cards for $8.16 from a company called Shudder, apparently a horror show streaming service. I quickly called CBA and flagged the issue, they cancelled the card and have lodged a dispute. The strange thing is, this particular card has never been used as I just use the account for savings, the card sits in my drawer so the details are not online.
On the call to the bank, the agent had confirmed he had seen quite a few of these from the same company.
I researched it a bit more and found numerous other people, seemingly with CBA accounts, also getting the charge: https://au.trustpilot.com/review/www.shudder.com
If I had used the card for an online purchase then I would think that particular site had been hacked and the details stolen. The fact I have NOT used this card online makes me wonder if somehow details have been stolen from the actual bank and that information has not been made public? Or maybe Im being paranoid,