Shoppers who pick a gift card off a retail display rack risk handing their money to thieves who already copied the card’s numbers and PIN before it was ever sold. Arizona Attorney General Kris Mayes announced an investigation into a gift-card cloning operation and the seizure of thousands of altered cards, while federal prosecutors in two separate cases have charged defendants in multimillion-dollar schemes built on the same type of fraud. The pattern has drawn attention from the FTC, the FBI, and members of Congress, all pressing retailers and card processors to fix a vulnerability that costs consumers money the moment they load value at the register.
How rack tampering turns a store purchase into instant theft
The scheme works because gift cards hang on open racks where anyone can handle them. Scammers peel back protective stickers or scratch-off strips, record the card number and PIN, then reseal the packaging so it looks untouched. Some operations go further: they print counterfeit barcode stickers and place them over the real barcodes, so the register activates a different card entirely. The FBI has warned consumers to check whether a barcode is printed directly on the card or stuck on as a separate label and to avoid cards with mismatched fonts or crooked stickers. Once a buyer loads funds at checkout, the thief can drain the balance within minutes from anywhere with internet access or a phone app.
The FTC guidance spells out the same risk: scammers capture card details before purchase, then sweep the funds after activation, often before the recipient has a chance to use the card. The agency advises buyers to inspect packaging for signs of tampering, compare visible numbers through the packaging to numbers on the receipt, and keep receipts to dispute unauthorized charges quickly. Victims are urged to report losses through the FTC’s fraud-reporting portal and to contact the card issuer immediately to request reimbursement or a freeze on remaining funds.
Federal and state cases reveal organized, cross-border operations
Enforcement actions show this is not petty shoplifting. Arizona Attorney General Mayes launched a formal investigation and seized thousands of cloned cards, documenting a cloning pipeline that operated across retail locations and allegedly involved systematic tampering with racks. Separately, a federal grand jury in the Central District of California indicted four Southern California defendants in a scheme to launder Target gift cards purchased by scam victims, converting balances into merchandise and then reselling it for cash. In the Southern District of New York, prosecutors charged a husband-and-wife team in a multimillion-dollar gift-card fraud scheme that allegedly relied on stolen numbers and rapid draining of activated cards.
Homeland Security Investigations has flagged gift-card fraud as a growing area of organized, multi-jurisdictional crime, noting that proceeds often cross state lines and can be funneled into other illicit enterprises, according to an HSI overview. Investigators describe a division of labor in some networks: one group harvests card data from store racks, another monitors activation activity online, and a third cashes out balances through online purchases, reshipping operations, or cryptocurrency exchanges. Because the underlying transactions typically look like legitimate retail sales, law enforcement must piece together patterns across many victims and jurisdictions.
Pressure on retailers and card issuers to close the loophole
The surge in complaints has prompted regulators and lawmakers to ask why gift cards remain so easy to compromise. Consumer advocates argue that leaving high-value cards on open racks, often near store entrances, effectively invites tampering. Some retailers have responded by moving cards behind customer service counters, locking high-dollar denominations in display cases, or requiring activation only when a card is removed from a sealed sleeve at checkout. Others are piloting packaging with tamper-evident seals that cannot be cleanly replaced once opened.
Card issuers and processors are under scrutiny as well. Security experts say issuers could implement real-time monitoring to flag suspicious activity, such as multiple cards with consecutive numbers being drained from the same IP address within minutes of activation. Stronger verification before large redemptions, shorter activation-to-use windows, and clearer dispute processes could also blunt the harm. Industry groups, however, warn that adding friction to gift-card use risks frustrating legitimate customers and undermining a popular product category for retailers during the holiday season.
What consumers can do now
Until systemic fixes are in place, consumers remain the first line of defense. Shoppers can reduce risk by choosing cards kept behind counters, avoiding any packaging with scratches, lifted corners, or extra stickers, and checking that the printed numbers visible through the packaging match the numbers on the receipt after purchase. Using the full balance soon after buying a card, rather than storing it for months, narrows the window in which thieves can strike. If a card shows a zero balance or unauthorized transactions, the buyer should immediately contact the retailer or issuer, preserve receipts and screenshots, and file reports with both the FTC and local law enforcement.
The recent investigations and prosecutions suggest that authorities are treating gift-card cloning as part of a broader fraud ecosystem rather than isolated incidents. But as long as physical cards with exposed numbers sit on open racks, criminals will have an incentive to keep refining their methods. For now, a few extra seconds of inspection at the display and at the register may be the only thing standing between a thoughtful gift and instant theft.