We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Disabling contactless payment on credit/debit cards
Options
Comments
-
-
"Consumers who use contactless debit and credit cards to buy goods or services could be unwittingly opening their bank account up to fraudsters, according to an investigation by Which?
Researchers bought cheap, widely available card scanners from a mainstream website to see if they could “steal” key details from a contactless card.
They tested 10 different credit and debit cards, that were meant to be coded to “mask” personal data, and were able to read crucial data that was meant to be hidden.
It then went shopping with the information it had obtained and was able to successfully place orders for items including a £3,000 television set. "
http://www.theguardian.com/money/2015/jul/23/contactless-card-is-too-easy-says-which0 -
I have heard that wrapping the card in tin foil effectively prevents it being read. But the sure fire way is to not have a contactless card period. I don't have one, and never will have one.0
-
barbarawright wrote: »"Consumers who use contactless debit and credit cards to buy goods or services could be unwittingly opening their bank account up to fraudsters, according to an investigation by Which?
Researchers bought cheap, widely available card scanners from a mainstream website to see if they could “steal” key details from a contactless card.
They tested 10 different credit and debit cards, that were meant to be coded to “mask” personal data, and were able to read crucial data that was meant to be hidden.
It then went shopping with the information it had obtained and was able to successfully place orders for items including a £3,000 television set. "
http://www.theguardian.com/money/2015/jul/23/contactless-card-is-too-easy-says-which
Yep, you can read the card number and expiry date from a contactless card using an Android table, or mobile phone, with an NFC reader and free software from the Play Store such as this: Banking Card Reader.
Retailers who allow a £3,000 TV to be ordered and, presumably, delivered to a 3rd party address are foolish. Amazon?
It should be easy to action a Chargeback. The retailer would lose out.
Edit: unauthorised transaction instead of chargeback.0 -
barbarawright wrote: »"Consumers who use contactless debit and credit cards to buy goods or services could be unwittingly opening their bank account up to fraudsters, according to an investigation by Which?
Researchers bought cheap, widely available card scanners from a mainstream website to see if they could “steal” key details from a contactless card.
They tested 10 different credit and debit cards, that were meant to be coded to “mask” personal data, and were able to read crucial data that was meant to be hidden.
It then went shopping with the information it had obtained and was able to successfully place orders for items including a £3,000 television set. "
http://www.theguardian.com/money/2015/jul/23/contactless-card-is-too-easy-says-which
What the report misses out is that the thieves will have to get hold of the card in order to scan it. Either that or place their scanner so it is touching the card in one's pocket or wallet due to the extreme short range of the RFID chip. There is nothing new in scanning cards of any description whether it be contactless, chip and pin or magnetic strip. All of them have the information on them which can be exploited by thieves.
But hats off to Which? and The Guardian for resurrecting something that was disproved years ago. It will probably get them a few extra subscribers and good luck to them.0 -
There is another very simply fix. If you have more than one contactless card in your wallet, it won't work either as you end up with card clash.0
-
What the report misses out is that the thieves will have to get hold of the card in order to scan it.
http://www.bbc.co.uk/news/technology-24743920
Read from 0.5m for starters. Thieves don't even need to get close to read your card.
A reader set up in a doorway could record the credit card information of every person entering the premises. It is early days for contactless cards - IMO it will happen.
In response to the dumb "do you carry a mobile" reply to my previous post in iOS 8 apple now use MAC address randomisation which prevents phones being uniquely identified by their connection to a WiFi node. http://arstechnica.com/apple/2014/06/ios8-to-stymie-trackers-and-marketers-with-mac-address-randomization/
This was done because people don't want to be electronically identified and tracked and I won't be carrying a device which enables that without good reason.0 -
-
Bedsit_Bob wrote: »It's not the WiFi you need to worry about.
It's the standard mobile handshake.
Mobile phones simply can not function without your mobile carrier knowing approximately where the phone is. If you don't trust your mobile carrier with that information don't use one or turn it off.
A contactless card provides personal identification information to anyone who cares to read it. You have no control over or idea who read it never mind if you trust them or not.
Cookies let companies track you across the internet, a contactless card is like a cookie that will allow companies to track you in the real world. It isn't happening *yet*. I'm sure the inventor of the cookie had no idea how badly they would be abused in the future either.0 -
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 350.9K Banking & Borrowing
- 253.1K Reduce Debt & Boost Income
- 453.5K Spending & Discounts
- 243.9K Work, Benefits & Business
- 598.8K Mortgages, Homes & Bills
- 176.9K Life & Family
- 257.2K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards