Submitted by 90sAltRockLover t3_yuaoan in nyc
Cobblestone-boner t1_iw8dck6 wrote
How
90sAltRockLover OP t1_iw8dmjg wrote
Your guess is as good as mine.
CrimsonBrit t1_iw9gp01 wrote
This is not an Apple Pay issue. Your card details were compromised
Magnus462 t1_iw9hlg2 wrote
There’s this device you can buy that clones signals. Anyone nearby could have picked up your transmission and cloned it. I know it works with rfid credit cards, might be the same for Apple Pay.
amf0336 t1_iwabvgc wrote
Apple Pay uses unique codes for each transaction, so even if someone got all the information for a single transaction, it’s not useful for following transactions: https://9to5mac.com/2016/08/23/comment-apple-pay-security-one-time-codes/amp/
Danhenderson234 t1_iw9slm4 wrote
Source in 2022 that mentions this?
PostureGai t1_iw9t4hs wrote
Why do you specify 2022? Would a 2021 source not be valid?
Danhenderson234 t1_iw9tb7x wrote
Because I read in 2021 that apple was aware of this, and fixed it before anyone was effected. Also apple is constantly updating for security. So without a recent source you are making this up
PostureGai t1_iw9z6jw wrote
>I read in 2021 that apple was aware of this, and fixed it
2021 source?
Danhenderson234 t1_iw9zkho wrote
https://www.pandasecurity.com/en/mediacenter/security/robbed-using-apple-pay/?amp=1
“The good news is that this hack does not appear to have been used by criminals yet. The loophole has been discovered by security researchers who are trying to find – and fix – problems before they can be abused”
KoJesko t1_iwa858w wrote
The flaw is in NFC itself. Apple can’t fix it I don’t think. Also makes GPay and SPay vulnerable. (Unsure about this)
Edit: making it clear i am unsure
PostureGai t1_iwa4zdy wrote
This doesn't say they fixed it!!
raddingy t1_iwba1ac wrote
Usually, these kinds of articles are released after the company fixes the security vulnerability. The company actually works with the security researcher and gets them to hold off blogging and publically reporting the bug. Companies like that because then there are no zero-day exploits, and researchers do it because that industry is entirely reputation based, and if you tick off enough companies, you’re out of a job.
PostureGai t1_iwbg1v3 wrote
And the company makes a statement that they fixed the bug. Not here.
Danhenderson234 t1_iwa5hsc wrote
Lol okay
Magnus462 t1_iwa9of8 wrote
Here is your 2022 source. I won’t post the specific device that does this.
Danhenderson234 t1_iwaaa3m wrote
It doesn’t work for Apple Pay. Hence why you said “might be the same”. It’s not the same
[deleted] t1_iwb85ze wrote
[deleted]
Viewing a single comment thread. View all comments