Personal Insights

Protecting your wallet: Practical tips to prevent credit card fraud

Fraud continues to affect millions of U.S. consumers each year, and credit card fraud remains one of the most common forms of identity theft reported to the Federal Trade Commission. Staying alert to evolving tactics is an important first step in protecting your accounts.

With a little preparation and awareness, you can reduce your risk by:

1. Carrying only the credit cards you need

You may have several credit accounts, but that doesn’t mean you need to carry every card. Only take the cards you need each day to minimize potential damage in the event of theft. Keep the others stored safely.

When you’re not using a card, take advantage of Card Locking features, such as Regions LockIt® card controls. Card companies often offer this feature, which allow you to block transactions and customize how your credit cards are used. Locking your card can help prevent unauthorized transactions and give you a little peace of mind.

2. Protecting your personal information online and offline

Fraudsters often piece together personal details — such as birthdates, addresses, account numbers and logins — to impersonate victims. Publicly sharing personal information on social networks can make this easier, so think carefully about what you post.

Digital security threats continue to evolve. Most smartphones, tablets, and computers now include built in password managers or support passkeys that eliminate the need to remember passwords by using cryptography stored on your device. According to Dashlane’s Passkey Report, passkey authentications increased 352% in 2025, and major platforms like Google and Amazon have already logged billions of passkey sign-ins.

At a minimum, keep all devices locked with a strong passcode or biometric sign in. If you still use passwords, choose a mix of letters, symbols, and numbers — not simple words or dates — and avoid reusing passwords across accounts. There are password manager tools available that can help you generate and store strong credentials.

Avoid entering important passwords, such as online banking logins, when connected to public Wi Fi. Public Wi Fi networks often lack secure encryption, meaning others on the same network could intercept information. The FTC advises that a Wi-Fi network is secure only if it requires a WPA or WPA2 password and recommends entering sensitive information only on sites that begin with “https.”

If you frequently use public Wi Fi, consider a VPN to encrypt your connection.

Offline risks also matter. Don’t dispose of unshredded documents that contain sensitive information. Identity theft expert Wayne Black notes that thieves often search trash for exploitable details. Shred documents — including draft tax returns or mortgage applications — before discarding them.

3. Reviewing the charges and amounts on your credit card statements

One of the most common credit card scams involves legitimate purchases with inflated totals — such as altered tip amounts at restaurants or unauthorized “cash back” added at gas stations. Keep your receipts from restaurants and gas stations and compare them to the charges on your statement.

Watch for phantom charges from unfamiliar merchants, and always report suspicious activity promptly.

Monitoring digital purchases and recurring subscription charges is increasingly important due to the rise of card not present (CNP) fraud, where attackers use stolen data to make electronic purchases. A Clearly Payments industry report found that CNP fraud accounted for $10 billion in losses in 2024, or 71% of all card fraud losses.

4. Checking your credit report every four months

Fraudsters who collect personal information may attempt to open new accounts in your name. Monitoring your credit report regularly can help you spot and address fraud early.

Regions customers can build credit using rent, cell phone, and utility payments and can check their credit score through a subscription service provided by Self Financial Inc.

You can also access your credit report for free once a year from each of the three major U.S. credit bureaus — Equifax, Experian, and TransUnion — at annualcreditreport.com. By staggering these requests, you can review one report every four months. (For example: Experian on Feb. 1, TransUnion on June 1, and Equifax on Oct. 1.)

5. Updating your contact information and preparing a backup payment method

Most card issuers no longer require travel notices thanks to AI based fraud detection. Still, ensure your contact information is current and keep an alternative payment method handy when using cards while traveling.

6. Verifying before sharing credit card information

Email remains the most common fraud contact method, according to the Federal Trade Commission’s Sentinel Network data, but fraudsters also use calls and texts.

Don’t share your credit card number over the phone unless you’re certain you’re speaking with a legitimate party. Protect yourself by initiating calls that involve personal information. If someone contacts you asking for sensitive details, hang up and call the company using an official customer service number.

For online transactions, the FTC recommends never giving personal information to someone who contacts you unexpectedly. If the sender claims to represent a company you use, visit the company website directly. Always check that URLs match the organization you’re intending to pay— fraudulent sites often redirect to unfamiliar or suspicious web addresses.

What to watch for: Account takeover & impersonation scams

Account takeover (ATO) and impersonation scams are increasingly common methods criminals use to commit credit card or identity fraud.

Account takeover scams (ATO)

Criminals often attempt to access online banking or financial accounts by stealing login credentials, then resetting passwords or changing contact information to lock victims out.

• Regions’ Doing More Today explains how fraudsters use phishing messages, fake “suspicious activity” alerts, impersonation of financial institutions, and credential theft to gain access and take over accounts.
• The FBI warns that scammers often direct victims to phishing websites or use spoofed communication to capture login details and one time passcodes.

Impersonation scams

Impersonation scams involve criminals posing as Regions bankers or as representatives of other financial institutions, law enforcement or other trusted authorities.

• Doing More Today reports scams where criminals pretend to be Regions bankers, claim they are solving fraud, and then request sensitive details such as card numbers or PINs — information Regions and other banks will never ask you to provide.

Staying alert, verifying before sharing personal details, and following safe communication practices can significantly reduce your risk.

Take the next step

Visit Regions.com/fraudprevention and the Fraud Prevention section of Doing More Today for more tips, real world examples and guidance.