Google Wallet Makes Certain User Information An Easy... - Other News

ADVERTISING DISCLOSURE

ADVERTISING DISCLOSURE:
Credit-Land.com is an independent, advertising-supported web site. Credit-Land.com receives compensation from most credit card issuers whose offers appear on our site. Compensation from our advertising partners impacts how and where their products appear on our site, including, for example, the order in which they may appear within review lists. Credit-Land.com has not reviewed all available credit card offers in the marketplace.

Credit Card Applications » News » Other » Google Wallet Makes Certain User Information An Easy Target For Hackers

Google Wallet Makes Certain User Information An Easy Target For Hackers

Google Wallet Makes Certain User Information An Easy Target For Hackers
The content is accurate at the time of publication and is subject to change.

Experts at forensic security company viaForensics made a startling discovery about Google Wallet recently. The revolutionary mobile app that allows users to store credit card information and make payment transactions simply by tapping their mobile phone at the point of sale stores a vast amount of the cardholder`s personal information in an unsecure format. With the exception of the actual credit card number and the CVV number – the 3 or 4 digit number found on the front or back of a card that proves to merchants during CNP sales that the buyer actually has the card in his or her possession – all other data stored is unencrypted. The “other data” in question includes names, addresses, credit card limits, transaction times, PIN numbers, etc. This makes an alarming amount of information available for hackers to help themselves to with relative ease. 


The chief investigative officer at viaForensics responsible for the discovery is Andrew Hoog. He performed two very basic tests on Google wallet using a rooted Sprint Nexus S mobile device to try out its security and the app failed on both counts.


Firstly, the app caches data directly on the user`s phone. If the user were to lose the phone or have it stolen, whoever were to retrieve it would be able to access the data. Secondly, the majority of the data that is stored is not encrypted. While Google Wallet keeps credit card account numbers along with the corresponding CVV codes on an encrypted portion of the NFC chip, the rest of the information is left unencrypted. Some of the information is even recoverable upon deletion of the transaction, such as the last four digits of the account number, the card`s expiration date and the name imprinted upon the card.


Fixes suggested by Hoog are to either encrypt all the data or else not to cache data on the mobile device. Upon his alarming security discoveries he spent a week with Google discussing his concerns regarding Google Wallet`s vulnerabilities.


“While it`s nearly impossible to provide 100 percent secure systems, it`s pretty attainable to developed reasonably secure systems,” said Hoog, according to PCMag.

Disclaimer: This editorial content is not provided or commissioned by the credit card issuer(s). Opinions expressed here are the author's alone, not those of the credit card issuer(s), and have not been reviewed, approved or otherwise endorsed by the credit card issuer(s). Reasonable efforts are made to present accurate information, however all information is presented without warranty. Consult a card's issuing bank for the terms & conditions.
All rates and fees, and other terms and conditions of the products mentioned in this article/post are actual as of the last update date but are subject to change. See the current products' Terms & Conditions on the issuing banks' websites.
Add to Favorites:

Related News:

Get 100,000 Bonus Points with the Radisson Rewards Premier Visa Signature

Posted: December 14, 2018

If you have been thinking about getting the Radisson Rewards Premier Visa Signature credit card, now might be the time to take another look because it now comes with 100,000 bonus points. This is a limited time offer, which is in play from ... Continue reading
Minor League Baseball and Allegiant Airlines Partner Up

Posted: December 13, 2018

Allegiant Airline and Minor League Baseball have inked a deal paving the way for a credit card partnership, one giving fans a credit card that reflects their fandom in terms of rewards whether they are traveling or catching a game. When ... Continue reading
Capital One Partners Up With Airlines

Posted: December 12, 2018

Capital One has partnered up with 14 airlines so that Venture and Spark cardholders can now use miles to pay for their flights. What is the transfer ratio? All of the carriers that have partnered up with Capital One, except for Emirates ... Continue reading
Get the latest news, articles and expert advice delivered to your inbox. It's FREE.
Earn 5% cash back at different places each quarter like gas stations, grocery stores, restaurants, Amazon.com and more up to the quarterly maximum, each time you activate.
For Excellent, Good Credit
INTRO OFFER: Discover will match ALL the Miles you've earned at the end of your first year, automatically. For example, if you earn 30,000 Miles, you get 60,000 Miles. That's $600 towards travel!
For Excellent, Good Credit
Earn 2% cash back on purchases: 1% when you buy plus 1% as you pay
For Excellent, Good Credit
You've successfully subscribed!

Please specify the following:All these fields are optional

Your Credit History
Themes you are interested in:

By providing this information you help us make our news letters more useful and informative. Thank you!