How was Apple Pay used on a stolen iPhone?
My wife's phone was pick pocketed. We belong to family sharing, so I immediately tried to locate the phone using Find my iPhone. The phone could not be found at all. When trying to call her number, the phone had been switched off. 2 hours later, bank transactions went off and I immediately contacted the bank. They advised that Apple Pay had been used. When using the cards, either facial recognition is used or the passcode is required. Neither of which the criminals would have, which indicates a flaw in the security. How could the Apple pay have been compromised?
[Re-Titled by Moderator]