HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
If you think it is a pain in the butt dealing with your credit card company now, imagine having to dispute a one million dollar fraudulent charge on your account. 
![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
Flaw in New Secure Credit Cards Would Let Hackers Steal $1M Per Card
- Thread starter HardOCP News
- Start date
NeghVar
2[H]4U
- Joined
- May 1, 2003
- Messages
- 2,671
I don't know how they do things in the UK, but with my card services, such an entry would freeze the associated account and I would be contacted immediately.
dgingeri
2[H]4U
- Joined
- Dec 5, 2004
- Messages
- 2,830
Suddenly, I think the Faraday cage wallet industry will see a surge in sales. I've been using one for years now.
http://www.thinkgeek.com/product/8cdd/
http://www.thinkgeek.com/product/8cdd/
Yakk
Supreme [H]ardness
- Joined
- Nov 5, 2010
- Messages
- 5,810
With the relative easiness of stealing info from chip cards the blocking wallets are indeed selling like crazy in places where the chip cards are used.
So here's the million dollar question of the day...
Who the hell thought that making credit card payments wireless was a good idea?
I'm sorry, I usually embrace technology in most forms but a credit card is a device that should only be used if the human who owns said credit card is actively holding the card and making it physically connect to a credit card processing station. There are too many opportunities for fraud otherwise.
Who the hell thought that making credit card payments wireless was a good idea?
I'm sorry, I usually embrace technology in most forms but a credit card is a device that should only be used if the human who owns said credit card is actively holding the card and making it physically connect to a credit card processing station. There are too many opportunities for fraud otherwise.
That article is misleading. It's written like it's a flaw in the EMV chip design. It's actually a flaw in Visa's contactless payment system.
So the new chip that needs to be included by the deadline in 2015 will be fine as long as Visa doesn't also include their bugged contactless system on the credit cards. easy fix.
So the new chip that needs to be included by the deadline in 2015 will be fine as long as Visa doesn't also include their bugged contactless system on the credit cards. easy fix.
But I thought these cards with chips are so much more secure than the magnetic stripes on the cards in the US?
Seems there is always a week link somewhere.
As for disputing a million dollar charge, I assume most people would also have to dispute the "over the limit" charges too
Seems there is always a week link somewhere.
As for disputing a million dollar charge, I assume most people would also have to dispute the "over the limit" charges too
Yakk
Supreme [H]ardness
- Joined
- Nov 5, 2010
- Messages
- 5,810
Yeah sorry, the flaw in the EMV chip itself is depredate from the flaw described by VISA.
Let's not confuse the flaws.
Let's not confuse the flaws.
Yakk
Supreme [H]ardness
- Joined
- Nov 5, 2010
- Messages
- 5,810
* Separate
naib
[H]ard|Gawd
- Joined
- Jul 26, 2013
- Messages
- 1,289
But I thought these cards with chips are so much more secure than the magnetic stripes on the cards in the US?
Seems there is always a week link somewhere.
As for disputing a million dollar charge, I assume most people would also have to dispute the "over the limit" charges too
This isn't describing a flaw with chip&pin, this is describing a flaw with a specific contactless payment.
TWO very different things.
What's funny is that the Myth busters were going to test these devices and RFID cards in general. Before it could air, VISA/etc. called discovery and forced them to bin it. They also can't talk about it.
Gotta love large corporations, always looking out for what's right.
CreepyUncleGoogle
Supreme [H]ardness
- Joined
- Mar 10, 2013
- Messages
- 6,871
Most people don't have a million of anything (except maybe cells or bacteria or something) so disputing that much moolah would be super easy just based on the average person's total lack of money.
402blownstroker
[H]ard|DCer of the Month - Nov. 2012
- Joined
- Jan 5, 2006
- Messages
- 3,242
It is secued across BlueTooth so its OK.
Yakk
Supreme [H]ardness
- Joined
- Nov 5, 2010
- Messages
- 5,810
Chip cards have been proven hackable on a show similar to myth busters in Canada, I'll try to find a link.
ol1bit
[H]ard|Gawd
- Joined
- Jan 15, 2007
- Messages
- 1,246
Oh man, I maintain 2-step authentication is the best way to go. My Credit union doesn't quite have it yet, but if you have to approve every charge via your phone (Goggle Wallet), it won't do shit if they stole my CC number.
mullet
[H]ard|Gawd
- Joined
- Aug 19, 2004
- Messages
- 2,022
QFT.
There is NO RFID in the EVM chip. Visa has paywave and mastercard has easypass these 2 systems are RFID systems that are damn horrible. I use to use a hole punch on my cards to get rid of the RFID chip.
SS_Wehrwolf
Gawd
- Joined
- Apr 5, 2005
- Messages
- 632
Want a better laugh, watch this video.
Mythbusters Banned from Talking about RFID Chip by Visa and American Express
https://www.youtube.com/watch?v=cs4I-hURT7A
SS_Wehrwolf
Gawd
- Joined
- Apr 5, 2005
- Messages
- 632
Allegedly simply pounding on a card with an RFID chip in it a few times with the sole of a shoe used to work as well. But that hack was from years ago. Hammers worked too, especially ball peen's, so you didnt damage the card itself and have to deal with possible unacceptence from retailers.
The Neo Zero
Gawd
- Joined
- Oct 9, 2010
- Messages
- 851
Solution.. don't get a card with a chip period.
I'm perfectly fine with my mag strip card.
I'm perfectly fine with my mag strip card.
naib
[H]ard|Gawd
- Joined
- Jul 26, 2013
- Messages
- 1,289
Again chip&pin != contactless
Mag strip & sig is flawed and cc fraud is rampant in the usa.
Chip&pin overcomes alot of this and in the course of a year cc fraud dropped significantly.
Contactless is something different and has issues.
Stop showing your ignorance