Digital-first players Chase and Monzo confirmed they have never used them, while Starling has phased them out of Google Pay.
Warnings have emerged over the security of digital wallets, following a report by consumer group Which? found widespread use of easily compromised one-time passcodes (OTPs) by some banks, leaving customers increasingly open to fraud.
The investigation, which surveyed fifteen high-street and digital banks, found that the majority are still relying on SMS OTPs to verify when a card is added to a digital wallet, despite repeated warnings from cybersecurity experts about their weaknesses.
It was noted that criminal actors have been exploiting this system by luring victims into phishing scams, harvesting card details, and then tricking them into entering OTPs under t