Numerous users of Google Play, Google's digital wallet for secure payments, took to social media to report worrying activity over the past few days. Google has now emailed users to confirm that no account hacking or data compromise has occurred.
As users of digital wallets, we trust the service provider to keep secure control over access to the cards we add and take great care to secure the transactions we make using them. When that provider is Google, it should go without saying that any betrayal of that trust would be a significant cause for concern. So, it should come as no surprise when, between Oct. 03 and 04, numerous Google Pay users were notified that a new card had been added to their wallets and was now ready to use, and people started worrying about account compromise.
The new card in question didn't belong to someone else but was one that many users said they recognized as their own. However, it had already expired months, if not years, before. No wonder people started to panic that a hacker had somehow gained access to their Google account and was up to no good. After all, Google does say that you can add your card details to your Google Account, "and they will be stored safely for a smoother checkout experience." So, what was going on?
Google's social media team was quick to respond to the postings made by concerned users on platforms such as X, explaining that the email notifications they had received were "sent by mistake." The social media responses told users that they should be assured there was "no unauthorized access to your account." Some users reported receiving multiple such email notifications, however, with one stating they had woken up to find "about 15" in their inbox. Another said that they had received three email notifications, one for each previously expired card from their Google Pay wallet. No wonder people were worried that a hacker had struck.
So worried, in fact, that the Google Pay support forum was inundated with questions from users to the point that it became a trending issue.
The mystery was explained, at least as best we can expect it to be, I suspect, with another official email from Google that was distributed over the weekend on Oct. 05 and acknowledged the error was all of its own making.
All's well that ends well, I guess. However, I take issue with one thing in that email from Google, which is that it said: "You do not need to take any action." I would advise anyone with a Google Pay wallet to check it and remove any expired cards that are showing. I would also take this opportunity to ensure no unusual transactions or activity have taken place. I like to turn negatives into positives, and if this mistake means that people become a little more aware of Google Pay and Google Account security, then that's got to be a good thing.