Collaborate Disseminate
I need to pass credit card information for a travel reservation, and I am thinking of splitting it over email and text. The credit card number itself would be send over text, while expiration date and verification number woul… Continue reading How secure is it to send credit card information partially over email and text?
I’m implementing an online payment system relying on an external payment processor handling all credit card entry. My payment processor supports recurring payments via “credit card tokens”. We only see and store these tokens … Continue reading When credit card tokens are leaked / stolen, what can the attacker do with them? [closed]
I have a debit card with a chip and contactless technology. I can use it without a PIN at stores below $15 purchases. Somebody recently used my card details at a department store for a 400 dollar purchase in the USA, even tho… Continue reading Am I a victim of an online hack or a physical debit card clone hack? [on hold]
This weekend I placed an order for a part from an online retailer ($300-400). Shortly thereafter I received an email from their sales team saying something similar to the following:
Hi, we have received your order #12345 and it has bee… Continue reading Online Retailer asks for a copy of Credit Card and Drivers License
Lets consider that someone skimmed the magnetic stripe of a credit/debit card which also has an emv chip.
Can this info be translated and stored into an emv chip?
And if this is possible, it is supposed that the information… Continue reading Can someone clone emv chip card by knowing the magnetic stripe info?
Three years after the switch to new chip-based credit and debit cards, a study by the National Retail Federation and Forrester says payment card fraud is still a top concern for large U.S. retailers as criminals move their activities online. “The imple… Continue reading In a post-EMV world, fraud is shifting from in-person to ecommerce channels
This is your Shared Security Weekly Blaze for November 19th 2018 with your host, Tom Eston. In this week’s episode: USPS Informed delivery vulnerabilities, protecting yourself from credit card fraud and a huge SMS database leak. Silent Pocket is … Continue reading USPS Informed Delivery Vulnerabilities, Holiday Credit Card Fraud, Huge SMS Database Leak – WB43
I was trying the new google api – I created anonymous account – added there my debit card, set up the API key for google maps. Tried API and pushed my API key to shared repository (yes I know – my fault). Then I forgot my cre… Continue reading Disable Google API key without access to google account
I’ve been in the Point of Sale industry for decades. Parsing card magnetic stripe track 1 data has never been difficult, but lately we’ve started to see some odd data in the name field of cards that customers have been swipin… Continue reading Odd characters — including a backslash — in magstripe track 1 name field?
When using EMV chip based cards at POS/shops, we can tell the device is EMV compliant if the card is inserted rather than swiped. Similarly, how can we tell if an ATM is EMV compliant or still scanning just the magnetic strip… Continue reading How to Identity EMV compliant ATM? [on hold]