In message <[log in to unmask]>, at 07:41:22
on Tue, 1 Mar 2011, Ibrahim Hasan <[log in to unmask]> writes
>They tell us that we should not let our credit cards out of our site.
>According to this video fraudsters can get at them without touching them!
>
>http://www.youtube.com/watch?v=7Shp8BN1IYM&feature=player_embedded
While it's possible to skim the Credit Card numbers in the way they
describe, what matters is how you *use* that number, later.
The Americans are [in]famous for treating CC numbers as a shared secret
(rather than as public information) and that's compounded because the
banks don't use simple security like a PIN (or C&P) in the shops, or
even check signatures (although the example in the video admittedly
circumvents a signture check).
It's not clear from the video above whether it's claimed that the thief
can clone the number onto another paywave card (probably can't) but even
if they could, they have floor limits built in (£100 a day, in effect,
plus random PIN challenge).
ps I'm told that this kind of skimming is a plot line in a recent
episode of a cops-and-robbers TV show aired in the USA:
<http://www.tv.com/ncis/enemies-foreign/episode/1361702/recap.html?tag=e
pisode_recap;recap>
--
Roland Perry
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm
Any queries about sending or receiving messages please send to the list owner
[log in to unmask]
Full help Desk - please email [log in to unmask] describing your needs
To receive these emails in HTML format send the command:
SET data-protection HTML to [log in to unmask]
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|