Keeping this brief, the other half has been the victim of credit card fraud. Unusual transaction was picked up by her card issuer, who contacted her. Since she'd made an online purchase a little while ago, they'd managed to spend a bit, but had also changed the address on the account, the landline number and her occupation, and requested a statement be sent, presumably so they could refer to it if future purchases were queried. She did nothing wrong and it's all sorted, thankfully, but her card issuer was unable to explain how someone could have changed all those details with only the credit card details and address (presumably from this order). How is that possible, in the days of heightened security, secret passwords and so on? I'm baffled and online search throws up nothing. Just wondered if anyone had any ideas, because I'm curious. And surely they'd have needed her DOB, but have no idea how they'd have got that. She has only used this card online, and only three sites, and two not for a very long time. It all tallies with this one purchase last month. I don't think it's good enough, so have suggested once it's all definitely resolved she destroys the replacement card and finds a new provider, but that might just be my anger about the whole thing talking. But would be interested to hear whether anyone has heard of anything similar or could satisfy my curiosity.