How To Protect a Relative's Mobile Money Account

Practical steps to secure a family member's mobile money or mobile banking account against fraud and unauthorised access.

Last reviewed: 1 June 2026

Mobile money accounts — including mobile banking apps, digital wallets, and payment apps — are increasingly the primary financial tool for many people. Their convenience also makes them a target for SIM-swap attacks, phishing, and social engineering. Helping a relative secure their mobile money account is a quick and valuable act of care that protects real money.

Secure the account itself

Strong account security makes unauthorised access significantly harder even if a fraudster has some of your relative's personal details.

Use a unique PIN or password — not a birth date or easily guessable number
Enable biometric login (fingerprint or face) if the app supports it
Set up two-factor authentication using an authentication app rather than SMS where possible
Enable transaction notifications so any payment generates an immediate alert

Protect the SIM card

SIM-swap fraud involves a fraudster convincing the mobile network to transfer your relative's number to a new SIM. This can bypass SMS-based security codes.

Contact the mobile network and ask to add a SIM-swap PIN or account security note
Be alert to sudden loss of mobile signal — this can indicate a SIM has been swapped
Do not share mobile network account passwords with anyone
Use an authentication app rather than SMS for all financial two-factor authentication

Recognise and resist social engineering

Many mobile money frauds succeed because the account holder is convinced to authorise a transfer themselves.

No legitimate bank or payment company will ask for a one-time code that was sent to your phone
Never authorise a payment or transfer under pressure from an unexpected caller
If the app shows a payment your relative did not initiate, call the provider immediately
Agree a family rule: any large or unexpected transfer is discussed first

Conversation script

“Mobile banking is so convenient — can we spend a few minutes making sure the account is as secure as it can be?”

“The most important thing is turning on notifications for every transaction, so you know straight away if anything unexpected happens.”

“If anyone ever calls claiming to be the bank and asks you to read them a code that just arrived on your phone — that is a scam. Real banks never ask for that.”

Frequently asked questions

What is a SIM-swap attack and how does it work?

A SIM-swap occurs when a fraudster convinces a mobile network that they are the account holder and asks for the phone number to be transferred to a new SIM they control. This gives them access to SMS-based security codes. Adding a SIM-swap PIN with your network is the main defence.

What should we do if an unauthorised transfer has already happened?

Contact the mobile money or banking provider immediately — most have a 24-hour fraud line. The sooner you report it, the better the chance of the payment being recalled.

Secure the account itself

Strong account security makes unauthorised access significantly harder even if a fraudster has some of your relative's personal details.

Use a unique PIN or password — not a birth date or easily guessable number

Enable biometric login (fingerprint or face) if the app supports it

Set up two-factor authentication using an authentication app rather than SMS where possible

Enable transaction notifications so any payment generates an immediate alert

Protect the SIM card

SIM-swap fraud involves a fraudster convincing the mobile network to transfer your relative's number to a new SIM. This can bypass SMS-based security codes.

Contact the mobile network and ask to add a SIM-swap PIN or account security note

Be alert to sudden loss of mobile signal — this can indicate a SIM has been swapped

Do not share mobile network account passwords with anyone

Use an authentication app rather than SMS for all financial two-factor authentication

Recognise and resist social engineering

Many mobile money frauds succeed because the account holder is convinced to authorise a transfer themselves.

No legitimate bank or payment company will ask for a one-time code that was sent to your phone

Never authorise a payment or transfer under pressure from an unexpected caller

If the app shows a payment your relative did not initiate, call the provider immediately

Agree a family rule: any large or unexpected transfer is discussed first

Conversation script

“Mobile banking is so convenient — can we spend a few minutes making sure the account is as secure as it can be?”

“The most important thing is turning on notifications for every transaction, so you know straight away if anything unexpected happens.”

“If anyone ever calls claiming to be the bank and asks you to read them a code that just arrived on your phone — that is a scam. Real banks never ask for that.”

Frequently asked questions

What is a SIM-swap attack and how does it work?

What should we do if an unauthorised transfer has already happened?

Contact the mobile money or banking provider immediately — most have a 24-hour fraud line. The sooner you report it, the better the chance of the payment being recalled.