Guides & How-To

Subscription Fraud:
How Scammers Sign You Up
and How to Fight Back

Someone is subscribing to things with your credit card right now. Probably. Maybe. Definitely worth checking. Here's everything you need to know about subscription fraud and how to stop it.

$8.8B
Lost to Sub Fraud
34%
Year Over Year Rise
4.7mo
Avg Detection Time
Cybersecurity and fraud protection concept

Congratulations, You're Now Subscribed to Something You've Never Heard Of

There's a special kind of horror that comes with checking your credit card statement and seeing a $14.99 monthly charge from "DGTL MEDIA PREM SVCS" or "WLLNSS PLT MNTHLY" -- services you've never signed up for, from companies you've never heard of, in what appears to be a language where vowels are illegal. Welcome to subscription fraud, the fastest-growing flavor of financial crime.

Subscription fraud is particularly insidious because the amounts are designed to fly under your radar. Scammers know that a $4.99 charge is less likely to trigger your attention than a $500 one. They're playing the long game, siphoning small amounts from thousands of victims simultaneously. It's death by a thousand tiny recurring charges, and most people don't notice for months.

The average victim of subscription fraud doesn't discover the unauthorized charges for nearly five months. In that time, at just $9.99 per month, a scammer has pocketed almost $50 from a single victim. Multiply that by tens of thousands of compromised card numbers, and you start to understand why this is a billion-dollar criminal enterprise.

The Five Ways Scammers Get You Subscribed

Understanding how subscription fraud works is the first step to protecting yourself. Scammers have refined their techniques into an art form, and new methods emerge constantly. Here are the five most common attack vectors:

1

Stolen Credit Card Numbers

This is the classic approach. Scammers obtain credit card numbers from data breaches, phishing emails, skimming devices, or dark web marketplaces where stolen card data is sold in bulk. They use these numbers to sign up for subscription services, often creating fake accounts with disposable email addresses. The charges are small enough that many cardholders don't notice, and the services are real enough that banks don't immediately flag them. Your card number from that restaurant breach three years ago? It might still be circulating.

2

The Fake Free Trial Trap

You see an ad for a "free" product -- maybe a sample of a skincare cream, a free week of a streaming service, or a complimentary ebook download. You enter your credit card "just for shipping" or "to verify your identity." Two weeks later, you're being charged $79.99/month for a "premium membership" you never knowingly agreed to. The terms were buried in microscopic text below the fold, and the cancel process requires sending a carrier pigeon to a PO box that doesn't exist.

3

Dark Pattern Sign-Ups

You're buying something online, and somewhere in the checkout process, a pre-checked box signs you up for a monthly subscription to a "partner service." The checkbox is designed to blend into the page. The language is deliberately confusing: "Uncheck this box to not opt out of not receiving our premium service." By the time you parse that triple negative, you've already been subscribed and your card has been charged. It's technically not fraud since you "agreed," but it's as close to fraud as you can get without wearing a ski mask.

4

Account Takeover

Scammers gain access to your existing accounts (email, app store, or streaming service) and add premium subscriptions or upgrade your plan. If someone gets into your Apple ID or Google account, they can subscribe to apps and services that charge through your linked payment method. You might not notice until you see the charges, especially if the scammer is smart enough to choose services with similar names to ones you already use.

5

Phantom Merchant Fraud

This is the most sophisticated version. Scammers create completely fake businesses with real-looking websites and legitimate merchant accounts. They sign up victims using stolen card data and process recurring charges through the payment system. When victims try to find the company to cancel, the website is a shell, the customer service number goes nowhere, and the only way to stop the charges is through your bank. These operations often disappear and reappear under different names.

Spot Unauthorized Subscriptions Instantly

Subcut keeps a complete inventory of every subscription you've signed up for. If a charge appears that's not on your list, you'll know it's fraudulent immediately instead of months later.

Protect Yourself with Subcut - Free

How to Detect Subscription Fraud (Before It's Too Late)

The best fraud protection is early detection. The sooner you catch unauthorized charges, the easier they are to reverse and the less damage is done. Here's your detection playbook:

Review Statements Weekly

Essential

Don't wait for your monthly statement. Log into your bank or credit card app weekly and scan for unfamiliar charges. Scammers often start with a tiny test charge ($0.50 or $1.00) before proceeding to larger recurring amounts. Catch the test charge, and you've prevented the real fraud.

Enable Transaction Alerts

Essential

Set up push notifications for every transaction on your cards. Most banks let you set alerts for charges above a certain threshold. Set it to $0 and you'll know about every single charge in real time. Yes, your phone will buzz a lot, but you'll catch fraud instantly.

Maintain a Subscription Inventory

Essential

Keep a list of every legitimate subscription you pay for. Use an app like Subcut to track them all in one place. When a charge appears on your statement, cross-reference it against your inventory. If it's not on the list, investigate immediately.

Google the Merchant Name

Quick Check

Credit card statements often show abbreviated merchant names that don't match the service name. Before assuming fraud, Google the merchant descriptor. "AMZN DIGITAL" is just Amazon. "GOOG *YOUTUBE" is YouTube Premium. But if Google returns nothing or shows other people complaining about the same mystery charge, you've got fraud.

The Step-by-Step Fraud Recovery Guide

You've found unauthorized subscription charges. Don't panic. Okay, panic a little, that's natural. But then follow these steps in order:

Your Fraud Recovery Checklist

1

Freeze or Replace Your Card Immediately

Call your bank or use their app to freeze your card. Most banks can issue a new card number immediately while keeping your account active. This stops any future charges from the compromised number. Don't wait -- do this first, investigate later.

2

Dispute Every Unauthorized Charge

Contact your bank to formally dispute each fraudulent charge. Under Regulation E (debit cards) and the Fair Credit Billing Act (credit cards), you have specific rights to recover unauthorized charges. Credit cards offer the strongest protection -- your liability is capped at $50, and most issuers offer zero liability.

3

Try to Cancel the Fraudulent Subscription

If you can identify the service, contact them to cancel the account created in your name. This is often difficult if the account was created with a different email address. But some services will cooperate when you explain the situation and provide proof that the card is yours.

4

Report to the Authorities

File a report at ReportFraud.ftc.gov. If significant amounts are involved, file a police report as well. These reports create a paper trail that helps both your dispute case and law enforcement investigations. You can also report to the Internet Crime Complaint Center (IC3) at ic3.gov.

5

Monitor Your Credit

Subscription fraud can be a sign of broader identity theft. Check your credit reports (free at AnnualCreditReport.com) for accounts you didn't open. Consider placing a fraud alert or credit freeze with the three bureaus. If you find evidence of identity theft, go to IdentityTheft.gov for a personalized recovery plan.

Prevention: Building Your Anti-Fraud Fortress

Recovery is good, but prevention is better. Here are the most effective strategies to avoid becoming a subscription fraud victim in the first place:

Use Virtual Credit Cards

Services like Privacy.com let you create unique card numbers for each subscription. Set spending limits, merchant locks, and auto-decline on expired trials. If a virtual card number is compromised, your real card is safe. Read our guide to disputing charges for more details.

Use Unique Emails

Create a unique email alias for each subscription service. If one gets compromised, you'll know exactly which service leaked your data. Apple's Hide My Email and services like SimpleLogin make this easy. When spam starts arriving at a specific alias, you know the source.

Enable Two-Factor Authentication

Protect your Apple ID, Google account, and financial accounts with 2FA. This prevents account takeover attacks that can lead to unauthorized subscriptions. Use an authenticator app rather than SMS for the strongest protection.

Be Skeptical of Free Offers

If a free trial requires a credit card, think twice. If it requires a credit card but doesn't clearly state the post-trial price, think three times. If the website looks like it was designed in 2004 and promises you a free iPad, close the tab and never look back.

Subscription fraud thrives on inattention. The single most effective defense is simply paying attention to your charges. Use a tool like Subcut to maintain a clear picture of your legitimate subscriptions, review your statements regularly, and question anything you don't recognize. The scammers are counting on you not looking. Prove them wrong.

Frequently Asked Questions

How do scammers create subscriptions in my name?

Scammers create subscriptions using stolen credit card numbers obtained from data breaches, phishing attacks, or purchased on the dark web. They also use dark pattern traps on websites that sign you up through deceptive checkbox placement, misleading button labels, or hidden terms. Some scammers run fake free trial offers that immediately convert to expensive paid subscriptions with no clear way to cancel.

What should I do if I find unauthorized subscription charges?

First, contact your bank or credit card company immediately to dispute the charges and request a new card number. Then contact the subscription service directly to cancel the fraudulent account. File a report with the FTC at ReportFraud.ftc.gov and with your local police if significant amounts are involved. Document everything including charge dates, amounts, and merchant names. Monitor your credit report for additional fraudulent activity.

Can I get a refund for fraudulent subscription charges?

Yes, in most cases you can recover fraudulent subscription charges. Under federal law, your liability for unauthorized credit card charges is limited to $50, and most card issuers offer zero liability. File a dispute with your credit card company within 60 days of the statement date. For debit cards, report within two business days to limit liability to $50. After that, liability can increase to $500. Keep records of all communications and dispute filings.

How can I protect myself from subscription fraud?

Use virtual credit cards with spending limits for subscriptions. Enable transaction alerts on your bank accounts. Review your credit card and bank statements monthly. Use a subscription tracker like Subcut to keep an inventory of all legitimate subscriptions so you can quickly spot unauthorized ones. Never enter payment information on unfamiliar websites. Be skeptical of free trial offers that require a credit card. Use unique email addresses for different services to track the source of any spam or fraud.

What is subscription identity theft?

Subscription identity theft occurs when someone uses your personal information to create subscription accounts in your name. This goes beyond stolen credit card numbers and may involve using your name, address, Social Security number, or other identity documents to pass verification checks. Victims may not discover the fraud until they receive bills, collection notices, or see impacts on their credit report. It is a form of identity theft that should be reported to the FTC Identity Theft division at IdentityTheft.gov.

Your First Line of Defense Against Subscription Fraud

Knowing exactly what you're subscribed to is the fastest way to spot what you're not. Subcut gives you a complete picture of every legitimate subscription so unauthorized charges stick out immediately.

Download Subcut Free