North Coast Voices: Is PayWave picking your pocket at the checkout?

Wednesday 10 September 2014

Is PayWave picking your pocket at the checkout?

Tweed Daily News 3 September 2014:

PAYWAVE card payments have improved efficiency at the checkout, but the experience of one South Grafton man suggests you should be vigilant near one of the terminals.

Last week, Don Booth, of South Grafton, was waiting behind another customer at the cash register of a Grafton business.

As he watched the cashier, he noticed she did something different and asked her what happened.

He was shocked to find that instead of billing the customer in front of him, the terminal had picked up the card in his wallet and completed the transaction with his money.

"Because the girl at the checkout noticed it, we were able to fix it up straight away," Mr Booth said.

He said the girl at the checkout told him it was not her first experience of a payWave transaction going wrong.

"She said it happened in Coles to a customer, in the same way it happened to me," Mr Booth said.

Mr Booth said he would be taking extra care to check his next card statement.

Perhaps the rise in credit card fraud NSW Police Coffs Clarence Police Command has recently complained about may also be a result of flaws in wireless near field communication technology.

In October last year Among Tech posted this information on electronic pickpocketing:

The fact that you can use your smartphone to pay at a restaurant or a store is great and with NFC (Near Field Communication) technology you can do just that, but what else? Several months back a report from CBC showed us how easy it is to steal credit card credentials using an App and NFC technology which is integrated in most of the high end Android smartphones, but even after 6 months it is still possible to download one of these Apps and hack someone’s credit card and Google has made no changes to its software in order to make it harder for people to steal someone else’s credit card info.

Apps like SquareLess allow users to see a credit cards number, security code and expiration date which later can be used by hackers to purchase products online without the credit card holder to give them permission to do so. SquareLess is just one of the many apps available on the Play Store that allow you to do just this, which is a very serious issue. A study done by xdadevelopers that any of the following credit cards can be hacked using NFC:

American Express Blue Cards

Barclaycard

Chase Credit Cards

MasterCard PayPass

Visa payWave Cards

So, How can an App and NFC read credit card credentials? NFC technology is also what is used in stores to read our credit card, a credit card will give its information which allows you to make the transaction once it finds a valid payment terminal device but the credit card doesn’t look at what type of terminal device this is (since it doesn’t know this information), it is just interested in finding one. Making the smartphone function like a payment terminal can allow you to “fool” the credit card making it think it is what it is looking for, easily allow the app to read all the necessary credentials. In order to do so, all that is required is for the smartphone with NFC to be approximately 10cm close to the credit card. Here is a video demonstrating just how easy it can be done……

Channel 7 Today Tonight also broadcast an item on this subject in July this year.

Internet websites are now offering RFID-shielding passport holders/wallets/sleeves to prevent remote scanning and skimming of Paywave or touch-and-go-credit cards, although the effectiveness of these products is open to question.

No comments:

Post a Comment

Privacy Statement

North Coast Voices no longer allows the Facebook Button sited at the end of each blog post to activate when it is clicked on by a reader.

This button has been deactivated because it has become clear that Facebook Inc. is not now and has never been a corporation genuinely committed to principles of digital privacy and security of Internet users' personal information and other associated data.

Unfortunately, because Blogger installs this button as part of a set, Gmail, Blog This!, Twitter, Pin Interest and Google + have also been deactivated and, we apologise to readers who may use these features.

Moggy Musings

Hi! My name is Boy. I'm a male bi-coloured tabby cat. Ever since I discovered that Malcolm Turnbull's dogs were allowed to blog, I have been pestering Clarencegirl to allow me a small space on North Coast Voices.

A false flag musing: I have noticed one particular voice on Facebook which is Pollyanna-positive on the subject of the Port of Yamba becoming a designated cruise ship destination. What this gentleman doesn’t disclose is that, as a principal of Middle Star Pty Ltd, he could be thought to have a potential pecuniary interest due to the fact that this corporation (which has had an office in Grafton since 2012) provides consultancy services and tourism business development services.

A religion & local government musing: On 11 October 2017 Clarence Valley Council has the Church of Jesus Christ Development Fund Inc in Sutherland Local Court No. 6 for a small claims hearing. It would appear that there may be a little issue in rendering unto Caesar. On 19 September 2017 an ordained minister of a religion (which was named by the Royal Commission into Institutional Responses to Child Sexual Abuse in relation to 40 instances of historical child sexual abuse on the NSW North Coast) read the Opening Prayer at Council’s ordinary monthly meeting. Earlier in the year an ordained minister (from a church network alleged to have supported an overseas orphanage closed because of child abuse claims in 2013) read the Opening Prayer and an ordained minister (belonging to yet another church network accused of ignoring child sexual abuse in the US and racism in South Africa) read the Opening Prayer at yet another ordinary monthly meeting. Nice one councillors - you are covering yourselves with glory!

An investigative musing: Newcastle Herald, 12 August 2017: The state’s corruption watchdog has been asked to investigate the finances of the Awabakal Aboriginal Local Land Council, less than 12 months after the troubled organisation was placed into administration by the state government. The Newcastle Herald understands accounting firm PKF Lawler made the decision to refer the land council to the Independent Commission Against Corruption after discovering a number of irregularities during an audit of its financial statements. The results of the audit were recently presented to a meeting of Awabakal members. Administrator Terry Lawler did not respond when contacted by the Herald and a PKF Lawler spokesperson said it was unable to comment on the matter. Given the intricate web of company relationships that existed with at least one former board member it is not outside the realms of possibility that, if ICAC accepts this referral, then United Land Councils Limited (registered New Zealand) and United First Peoples Syndications Pty Ltd(registered Australia) might be interviewed. North Coast Voices readers will remember that on 15 August 2015 representatives of these two companied gave evidence before NSW Legislative Council General Purpose Standing Committee No. 6 INQUIRY INTO CROWN LAND. This evidence included advocating for a Yamba mega port.

A Nationals musing: Word around the traps is that NSW Nats MP for Clarence Chris Gulaptis has been talking up the notion of cruise ships visiting the Clarence River estuary. Fair dinkum! That man can be guaranteed to run with any bad idea put to him. I'm sure one or more cruise ships moored in the main navigation channel on a regular basis for one, two or three days is something other regular river users will really welcome. *pause for appreciation of irony* The draft of the smallest of the smaller cruise vessels is 3 metres and it would only stay safely afloat in that channel. Even the Yamba-Iluka ferry has been known to get momentarily stuck in silt/sand from time to time in Yamba Bay and even a very small cruise ship wouldn't be able to safely enter and exit Iluka Bay. You can bet your bottom dollar operators of cruise lines would soon be calling for dredging at the approach to the river mouth - and you know how well that goes down with the local residents.

A local councils musing: Which Northern Rivers council is on a low-key NSW Office of Local Government watch list courtesy of feet dragging by a past general manager?

A serial pest musing: I'm sure the Clarence Valley was thrilled to find that a well-known fantasist is active once again in the wee small hours of the morning treading a well-worn path of accusations involving police, local business owners and others.

An investigative musing: Which NSW North Coast council is batting to have the longest running code of conduct complaint investigation on record?

A fun fact musing: An estimated 24,000 whales migrated along the NSW coastline in 2016 according to the NSW National Parks and Wildlife Service and the migration period is getting longer.

A which bank? musing: Despite a net profit last year of $9,227 million the Commonwealth Bank still insists on paying below Centrelink deeming rates interest on money held in Pensioner Security Accounts. One local wag says he’s waiting for the first bill from the bank charging him for the privilege of keeping his pension dollars at that bank.

A Daily Examiner musing: Just when you thought this newspaper could sink no lower under News Corp management, it continues to give column space to Andrew Bolt.

A thought to ponder musing: In case of bushfire or flood - do you have an emergency evacuation plan for the family pet?

An adoption musing: Every week on the NSW North Coast a number of cats and dogs find themselves without a home. If you want to do your bit and give one bundle of joy a new family, contact Happy Paws on 0419 404 766 or your local council pound.

North Coast Voices

Wednesday 10 September 2014

Is PayWave picking your pocket at the checkout?

No comments:

Privacy Statement

On Twitter

Clarence River Protest 2016

Proudly supporting public broadcasting

North Coast Scenes

Northern Postcard

NSW North Coast

Australian Bureau of Meteorology

Moggy Musings

Blog Archive

Pages

Contributors

Site Meter

*************************

North Coast Voices Comments Policy

OZ Blogs & Assorted Others