Community

I think this post on linkedin answers it well: 

https://www.linkedin.com/posts/williampayments_customers-of-major-bank-try-to-withdraw-activity-7291815285487988736-VTV8

"The most likely explanation lies in Stand-In Processing (STIP), a system used by major card networks like Visa and Mastercard, as well as some modern payment processors. STIP is designed to ensure that cardholders can still make payments when their bank’s systems are unavailable due to outages or sporadic technical issues. (...) 

Once Barclays is back online, it will receive a report of approved transactions and deduct the corresponding amounts from customers’ accounts. If an account lacks sufficient funds, the bank typically places it into overdraft."

I guess the banks need to implement some sort of authentication and fraud mechanism. Perhaps some "fraud fund" and charge risk-based fees to incentivize proper solutions. And maybe adding some clear chargeback processes. 

And in sum try to build what the card networks already has built?

I wonder how that will affect the pricing and business model of direct debit 🧐 

This sounds like a solution that's easy to hack. Are they using static or dynamic data from the card to authenticate? I really hope they're not using the static data - then your card data (easy to steal) gives full access to your account.

If they are using dynamic data it would be interesting to learn more about how they do this. Are they using session/transaction keys? Or are the cards running an additional applet for authentication purposes?