TechBriefly
  • Tech
  • Business
  • Crypto
  • Science
  • Geek
  • How to
  • About
    • About TechBriefly
    • Terms and Conditions
    • Privacy Policy
    • Contact Us
    • Languages
      • 中文 (Chinese)
      • Dansk
      • Deutsch
      • Español
      • English
      • Français
      • Nederlands
      • Italiano
      • 日本语 (Japanese)
      • 한국인 (Korean)
      • Norsk
      • Polski
      • Português
      • Pусский (Russian)
      • Suomalainen
      • Svenska
  • FAQ
    • Articles
No Result
View All Result
 Hot Topics:
  • ChatGPT risks
  • Snapchat planets order
  • Honkai Star Rail color name
  • Lookism AI filter
  • Binance WOTD answers (Bitcoin Fundamentals)
TechBriefly
No Result
View All Result
Home Tech Security

iPhone users beware: Vulnerability found in the payment system of Apple Pay and Visa

Experts from the University of Birmingham and the University of Surrey found a security flaw regarding Apple Pay and Visa.

by Kerem Gülen
1 October 2021
in Security, Tech
Reading Time: 2 mins read
iPhone users beware: Vulnerability found in the payment system of Apple Pay and Visa
Share on FacebookShare on Twitter

Researches found a vulnerability in the payment system of Apple Pay and Visa. After finding a bug that fraudsters might use to elude security measures and make unlimited contactless purchases, researchers have urged iPhone users to cancel Visa as a transportation card using Apple Pay.

Experts from the University of Birmingham and the University of Surrey raised concerns that the flaw might be used to conduct transactions from an iPhone in someone’s luggage without them knowing.

There’s a security flaw regarding the payment system of Apple Pay and Visa

The issue is said to occur only with Apple Pay when a Visa card is set up as an Express Travel Card, also known as Express Transit mode. The team used simple radio equipment to trick the iPhone into believing it was communicating with a transit gate when it was really a payment reader. This was accomplished by detecting a unique code sent out by transit gates, which was then used to interfere with the signals between the iPhone and a shop card reader.

Dr. Tom Chothia from the University of Birmingham said: “iPhone owners should check if they have a Visa card set up for transit payments and if so they should disable it. There is no need for Apple Pay users to be in danger, but until Apple or Visa fix this they are.”

iPhone users beware: Vulnerability found in the payment system of Apple Pay and Visa
iPhone owners should check if they have a Visa card set up for transit payments according to Dr. Tom Chothia

The group’s tests found that the back-end fraud detection checks were unable to prevent any payments from going through. The researchers said they spoke with Apple and Visa about the vulnerability, claiming both acknowledged the underlying problem’s significance but have yet to reach an agreement on who should implement a solution.

“Variations of contactless fraud schemes have been studied in laboratory settings for more than a decade and have proven to be impractical to execute at scale in the real world,” a Visa spokeswoman said. “Visa takes all security threats very seriously, and we work tirelessly to strengthen payment security across the ecosystem,” she added.

Then, Apple responded with: “We take any threat to users’ security very seriously. This is a concern with a Visa system but Visa does not believe this kind of fraud is likely to take place in the real world given the multiple layers of security in place. In the unlikely event that an unauthorized payment does occur, Visa has made it clear that their cardholders are protected by Visa’s zero liability policy.”

Apple and Visa couldn’t come to an agreement

Dr. Andreea Radu, the leader of the study, commented that: “Our work shows a clear example of a feature, meant to incrementally make life easier, backfiring and negatively impacting security, with potentially serious financial consequences for users.”

iPhone users beware: Vulnerability found in the payment system of Apple Pay and Visa
Apple and Visa have not reached an agreement on who should implement a solution.

“Our discussions with Apple and Visa revealed that when two industry parties each have partial blame, neither are willing to accept responsibility and implement a fix, leaving users vulnerable indefinitely,” he added.

The security flaw does not apply to other combinations, such as Mastercard in iPhones or Visa on Samsung Pay. The researchers’ complete findings will be presented at the 2022 IEEE Symposium on Security and Privacy.

Tags: Appleapple payiPhonepayment methodsecurity flawVISAvulnerability

Related Posts

John Wick 4 Twitter leak

John Wick 4 Twitter leak: Full movie streams on Twitter

Google ai search engine

Google AI search engine: How to sign up?

youtube

YouTube stories not working, because…

Ford and Tesla

Tesla’s charging plugs will welcome Ford EVs next year

POPULAR

Webtoon Lookism AI filter: TikTok trend explained

Binance Word of the Day answers: Bitcoin Fundamentals theme

Binance Word of the Day answers: Binance Pay theme

How to fix Division 2 if it keeps crashing in 2023?

Is there a way to remove Character AI NSFW filters?

RCM Loader for Nintendo Switch: What is it, how can you install?

What is Snapchat planets order?

What does setting interrogation succeeded mean?

What is Instagram direct message suggested list order (explained)?

V Rising god mode command and all other cheat codes

RSS News Republic

  • Hogwarts Legacy: Which ball in Quidditch is the largest?
  • Backbone One PlayStation Android: Specs, price, and release date
  • DarkBERT: A deep dive into the Dark Web’s secrets
  • What happened to Ryan Waller? $15 million lawsuit explained
  • TikTok trend explained: Webtoon Lookism AI filter

RSS Digital Report

  • Using Voice of the Customer for marketing and its benefits
  • Creating estimations for cost and organic traffic for your future SEO endeavors
  • Biggest issues plaguing the blockchain in 2023
  • What is the “Framing Effect” in marketing and how to use it?
  • How does in-house SEO compare to utilizing agencies and how to get started with it?

RSS Latest from LeaderGamer

  • CSGO console codes
  • CSGO Hud On – Off
  • CS:GO Immortality Code
  • CSGO Money Code
  • CSGO Flying Code
TechBriefly

© 2021 TechBriefly is a Linkmedya brand.

  • Tech
  • Business
  • Science
  • Geek
  • How to
  • About
  • Privacy
  • Terms
  • Contact
  • FAQ
  • | Network Sites |
  • Digital Report
  • LeaderGamer
  • News Republic

Follow Us

No Result
View All Result
  • Tech
  • Business
  • Crypto
  • Science
  • Geek
  • How to
  • About
    • About TechBriefly
    • Terms and Conditions
    • Privacy Policy
    • Contact Us
    • Languages
      • 中文 (Chinese)
      • Dansk
      • Deutsch
      • Español
      • English
      • Français
      • Nederlands
      • Italiano
      • 日本语 (Japanese)
      • 한국인 (Korean)
      • Norsk
      • Polski
      • Português
      • Pусский (Russian)
      • Suomalainen
      • Svenska
  • FAQ
    • Articles