Visa's new Paywave chip-and-PIN credit-cards have a $1M limit on foreign-currency transactions that can be verified "in-card," meaning that someone who gets close enough to your UK wallet can simply wave a phone at it and charge a megabuck to it without raising any realtime security alerts.
More practically, fraudsters with access to a crooked overseas bank could charge smaller amounts that might go undetected for weeks or months, and that would be low enough that police departments would be likely to ignore them.
According to researchers at Newcastle University in the UK, the card system developed by VISA for use in the United Kingdom fails to recognize transactions made in non-UK foreign currencies and can therefore be tricked into approving any transaction up to 999,999.99.
What’s more, because the cards allow for contactless transactions, wherein consumers need only to have the card in the vicinity of a reader without swiping it, a thief carrying a card reader designed to read a card that’s stored in a wallet or purse could conduct fraudulent transactions without the victim ever removing their card.
Since the transaction is done offline without going through a retailer’s point-of-sale system, no other security checks are done.
“With just a mobile phone we created a POS terminal that could read a card through a wallet,” Martin Emms, lead researcher of the project that uncovered the flaw, noted in a statement about the findings. “All the checks are carried out on the card rather than the terminal so at the point of transaction, there is nothing to raise suspicions. By pre-setting the amount you want to transfer, you can bump your mobile against someone’s pocket or swipe your phone over a wallet left on a table and approve a transaction.”
Flaw in New ‘Secure’ Credit Cards Would Let Hackers Steal $1M Per Card [Kim Zetter/Wired]
Logitech’s MX Keys [Amazon] is what it finally took to lure me away from mechanical keyboards. It’s a slim yet solidly-constructed full-size model that’s similar to and superior to Apple’s Magic Keyboard. It’s flat, minimalist, heavy, solid and low-profile, with large backlit keys typeset in something similar to Futura Light. The keys are square with […]
Microsoft is to shut shop on the high streets and malls of America, permanently closing its 116 retail stores. Only 10 were overseas; flagship stores in New York City, London, Sydney, and Redmond will be remain as showrooms that do not sell the products. There will be no layoffs, Microsoft reports. Alarm bells rang when […]
Traintrackr is a powered circuit board showing a map of the London Underground, lighting up in real time to show train positions on 333 stations on all 12 main lines. It connects to the tube’s API for live location data every second. The board is 400mm x 300mm and sells for £249. (There’s also the […]
Back in the 50s and 60s, it was no big deal in most areas to make a call to your local liquor store and have beer, wine and spirits delivered right to your house with little to no restriction. However, that ease and simplicity certainly isn’t in place today. Alcohol delivery laws in 2020 are […]
Unless you’re a regular cannabis user, you might be surprised to learn that the plant itself is basically just that — a plant. It’s not until you put cannabis under high heat that the process of decarboxylation breaks down that raw form into the psychoactive compounds that can actually benefit the body. This unlocking process […]
With our smartphones serving as the vital tether that links us to the rest of our lives, it’s no wonder how low batteries and power emergencies can occasionally feel like a life-and-death situation. I mean, it’s usually not, of course…but darned if it doesn’t feel that way when your indicator is showing only 5 percent […]