|
...you Seuth Effriken bastaaards.
Michael Martin
Australia
"I controlled my laughter and simple said "No,I am very busy,so I can't write any code for you". The moment they heard this all the smiling face turned into a sad looking face and one of them farted. So I had to leave the place as soon as possible."
- Mr.Prakash One Fine Saturday. 24/04/2004
|
|
|
|
|
Having your bank account raided on the way to work[^]
I hadn't thought of that one...simple way to make significant amounts on most commuter trains, I'd have thought.
And with the recent TalkTalk fun-and-games are we perhaps developing too fast? Maybe we want to stop, step back and design a total system that is secure, including internet identity and payment systems? Any thoughts?
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
|
|
|
|
|
I don't understand how magnetic stripe cards can be read by bumping into you. The magnetic strip needs to be swiped in contact with a reader. A millimeter or more from the reader, and the read will fail. Sorry, but I think people who claim that the magnetic stripe can be read from a distance, without swiping the card, are talking bs.
How do we preserve the wisdom men will need,
when their violent passions are spent?
- The Lost Horizon
|
|
|
|
|
What the thieves are making use of is the RFID/NFC contactless card technology [^] in many cards now issued by banks.
I only used this recently on my card when I was buying some razors - all you need to do is move your card near a reader and the money is instantly taken off your account with no acknowledgement needed on your part.
The security built into these cards is that there is usually a limit of around £30 per transaction(although I don't know how multiple transactions is short succession are prevented), as well as needing to be very close to the card reader - hence the ability to exploit this when commuting with lots of people in close proximity many of them having one of these cards.
It's the equivalent of pickpocketing without having to reach into your pocket.
“That which can be asserted without evidence, can be dismissed without evidence.”
― Christopher Hitchens
|
|
|
|
|
Nope - these are the new cards the banks are issuing which look like the older stripe-on-the-back-and chip'n'pin-on-the-front cards, but adds a symbol (that looks like a WiFi strength rotated 90 degrees) in the top right corner. Once enabled, you can pay for goods by "tapping" the card reader instead of inserting the card and entering the pin number for payments up to £30. Similar to the way you "tap" an Oyster card in public transport in London - it's called "contactless payment".
In this case, they are "tapping" your wallet with a reader to do the same thing.
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
|
|
|
|
|
Thanks for clarifying. I have never seen one of the cards you mention. The USA appears to be a bit slow in adopting new card technology. We are only now getting issued with chip-in cards, that I understand has been around for some time in Europe.
How do we preserve the wisdom men will need,
when their violent passions are spent?
- The Lost Horizon
|
|
|
|
|
Yeah, we've had them quite a few years - to the point where I have to seriously think every time I need to sign my name to be sure I remember how to do it!
Not sure if I've even written a cheque this century....
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
|
|
|
|
|
I am reminded of a cartoon that appeared in Omni way back in the 70s ...
I pay cash. It says far less about me than my American Express card!
|
|
|
|
|
I wonder how this is even possible -> When I use the system, the card has to be in contact with the reader, and must not move a tad for the transfer to be successful. I used to have to try one or two times for it to work.
I think a SMS alert whenever money is taken from your account would not be a bad thing. It would not increase security, maybe just awareness that something went wrong on your account.
|
|
|
|
|
Yeah ... I wonder how many people realize that they shouldn't let even the old cards out their site? That 3 little digits on the back is all anyone needs to do some serious credit limit approaching! So I can easily imagine people thinking this is secure and then wondering why their funds keep getting less as soon as they're in public spaces. I'm guessing the exact same issue would be prevalent with that 1984-type, chip-under-the-skin idea. I mean, just how difficult would it be to read that - it would be the same tech.
I wish marketing would leave their dirty paws from security already! Same silly ideas about biometric "security", it's not that difficult to fake someone's fingerprints[^]. And it's not as if you can "change" them like passwords can. I'm just waiting for them to get the bright idea to tie these two idiocies together ... so then you'll need to wear gloves permanently or carry a ton of wet-wipes everywhere.
This wireless card thingy has already been seen to be completely useless. They were going to go with your phone "being" your card too ... fortunately that died quickly. Over here (South Africa) it's now the norm for even the normal cards (i.e. mag strip and chip+pin) having the bank sending a SMS and then waiting for your response before the payment goes through (i.e. two tier authentication due to so much card fraud going on here). That's now more work and time than writing out a cheque would have been, with no more security on the customer's side, progress indeed!
|
|
|
|
|
Why not use the phone to pay.. the card concept was introduced ages ago when we didnt have smartphone based payment methods.
we should ideally be using NFC on phone (like Apple Pay) to solve this (not to mean that theft can't happen there, but it does add a level of security).
"apparently people get really pissed off when you stop speaking in the middle of a "
|
|
|
|
|
Why limit yourself to £20 when you could be taking $999,999.99 every time[^]?
"These people looked deep within my soul and assigned me a number based on the order in which I joined."
- Homer
|
|
|
|
|
I've heard an urban legend of the tap-reader being so sensitive that people not buying anything and walking by in the checkout isle, have paid for purchases.
Someone carrying a reader with them on a subway, say, seems more plausible.
Still, if one is worried, check with the bank to see if that "feature" (vulnerability) can be disabled.
Cheers,
Mike Fidler
"I intend to live forever - so far, so good." Steven Wright
"I almost had a psychic girlfriend but she left me before we met." Also Steven Wright
"I'm addicted to placebos. I could quit, but it wouldn't matter." Steven Wright yet again.
|
|
|
|
|
After getting both of my credits cards hacked, I dont use them anymore so I guess that's the best protection.
If you really need one though, maybe using a wallet-sized aluminium/alloy card holder box can help?
"The primary trait of a good programmer is laziness. Nobody works harder to do nothing than a good programmer." - MehGerbil
|
|
|
|
|
This is why my credit cards and passport stay inside of an RFID Shield.
|
|
|
|
|
|
Awesome plane.
Pity they're "replacing" it with the F-35
|
|
|
|
|
Who do we think will win this afternoon ? I'm going for NZ.
We can’t stop here, this is bat country - Hunter S Thompson RIP
|
|
|
|
|
All Blacks - and I don't think it's going to be close!
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
|
|
|
|
|
I hope you're right - if they play their normal game they should win easily.
We can’t stop here, this is bat country - Hunter S Thompson RIP
|
|
|
|
|
Ah those poor boks. They ain't what they used to be! Imagine them losing to Japan!
How do we preserve the wisdom men will need,
when their violent passions are spent?
- The Lost Horizon
|
|
|
|
|
OriginalGriff wrote: and I don't think it's going to be close! It was.
|
|
|
|
|
Wasn't it just!
After the first half, I expected NZ to come out all guns blazing, but they just pushed it up a bit.
Maybe they wanted to do just enough to win and not risk injuries before the final? I dunno...
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
|
|
|
|
|
I would have preferred the Boks to win. Especially as my half-South African grandson is now learning to play hooker in Harrow RFC (juniors).
|
|
|
|
|
It is quite clear in my mind that it will be the team which scores the most points. I'm willing to bet my entire life savings on it. Any takers?
|
|
|
|