Contactless card flaw could cost victims dear
Scammers could skim off thousands of pounds just by brushing past a victim carrying a contactless payment card
A flaw in the security provisions for contactless payment cards could allow thieves to steal large amounts of foreign currency just by touching a smartphone against a victim’s wallet, scientists have said.
The glitch could allow thieves to withdraw sums of up to 999,999.99 in foreign currency denominations, The Independent reports. If done in Euros this could come to more than £780,000.
Contactless payment cards are meant to have a spending cap of £20, but security experts from Newcastle University found that those limits are not imposed when payments are made in foreign currency.
Subscribe to The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
Researchers said that thieves could potentially exploit the flaw by rigging smartphones to act as card scanners, allowing them to steal huge sums of money from unwitting victims.
Lead researcher Martin Emms said: "With just a mobile phone we created a point-of-sale terminal that could read a card through a wallet. By pre-setting the amount you want to transfer, you can bump your mobile against someone’s pocket or swipe your phone over a wallet left on a table and approve a transaction. It took less than a second for the transaction to be approved."
After reviewing Newcastle University’s findings, Visa Europe responded that the study failed to take into account the "multiple safeguards throughout the Visa system", adding: "It would be very difficult to complete a fraudulent payment of this kind outside a laboratory environment."
The UK Cards Association trade body told the Daily Mail: "While this complex fraud may be theoretically feasible in a laboratory, it hasn’t been attempted in the real world and absolutely no money has ever been lost as a result. There are robust security checks in place at every single stage of a payment – by the retailer’s bank, the card scheme and the customer’s bank – which monitor, and stop, suspicious transactions. Consumers can be assured they are legally protected from any fraud losses and will never be out of pocket."
It added: "Contactless cards are extremely safe – borne out by the negligible fraud losses of less than 1p for every £100 spent over the first half of 2014."
Create an account with the same email registered to your subscription to unlock access.
Sign up for Today's Best Articles in your inbox
A free daily email with the biggest news stories of the day – and the best features from TheWeek.com
-
Georgia's new foreign influence bill
Under the Radar Critics claim the 'Russian law' could stifle dissent and wreck the country's chances of joining the EU
By Elliott Goat, The Week UK Published
-
'Making a police state out of the liberal university'
Instant Opinion Opinion, comment and editorials of the day
By Harold Maass, The Week US Published
-
8 looming climate tipping points that imperil our planet
The Explainer New reports detail the thresholds we may be close to crossing
By Devika Rao, The Week US Published
-
Hong Kong passes tough new security law
Speed Read It will allow the government to further suppress all forms of dissent
By Peter Weber, The Week US Published
-
Where is sex before marriage illegal?
feature Indonesia is the latest country to ban sex outside of wedlock
By Chas Newkey-Burden Published
-
New law makes all South Koreans younger
feature And other stories from the stranger side of life
By The Week Staff Published
-
Shamima Begum: what next after ‘Isis bride’ loses bid to regain UK citizenship?
Talking Point Lawyers say the Isis bride was victim of human trafficking for the purposes of sexual exploitation
By Arion McNicoll Last updated
-
Nobel winner thought call was about broken lawnmower
feature And other stories from the stranger side of life
By The Week Staff Published
-
Shaquille O'Neal joins effort to amend Australian Constitution
Speed Read
By Grayson Quay Published
-
Alexandria Ocasio-Cortez and 17 other lawmakers arrested outside US Supreme Court
Speed Read The Congress members were attending a protest in support of abortion rights
By The Week Staff Published
-
Brittney Griner lawyers tell court she was prescribed medical cannabis due to chronic pain
Speed Read
By Brendan Morrow Published