Google Wallet Makes Certain User Information An Easy... - Other News

ADVERTISING DISCLOSURE

ADVERTISING DISCLOSURE:
Credit-Land.com is an independent, advertising-supported web site. Credit-Land.com receives compensation from most credit card issuers whose offers appear on our site. Compensation from our advertising partners impacts how and where their products appear on our site, including, for example, the order in which they may appear within review lists. Credit-Land.com has not reviewed all available credit card offers in the marketplace.

Credit Card Applications » News » Other » Google Wallet Makes Certain User Information An Easy Target For Hackers

Google Wallet Makes Certain User Information An Easy Target For Hackers

Google Wallet Makes Certain User Information An Easy Target For Hackers
The content is accurate at the time of publication and is subject to change.

Experts at forensic security company viaForensics made a startling discovery about Google Wallet recently. The revolutionary mobile app that allows users to store credit card information and make payment transactions simply by tapping their mobile phone at the point of sale stores a vast amount of the cardholder`s personal information in an unsecure format. With the exception of the actual credit card number and the CVV number – the 3 or 4 digit number found on the front or back of a card that proves to merchants during CNP sales that the buyer actually has the card in his or her possession – all other data stored is unencrypted. The “other data” in question includes names, addresses, credit card limits, transaction times, PIN numbers, etc. This makes an alarming amount of information available for hackers to help themselves to with relative ease. 


The chief investigative officer at viaForensics responsible for the discovery is Andrew Hoog. He performed two very basic tests on Google wallet using a rooted Sprint Nexus S mobile device to try out its security and the app failed on both counts.


Firstly, the app caches data directly on the user`s phone. If the user were to lose the phone or have it stolen, whoever were to retrieve it would be able to access the data. Secondly, the majority of the data that is stored is not encrypted. While Google Wallet keeps credit card account numbers along with the corresponding CVV codes on an encrypted portion of the NFC chip, the rest of the information is left unencrypted. Some of the information is even recoverable upon deletion of the transaction, such as the last four digits of the account number, the card`s expiration date and the name imprinted upon the card.


Fixes suggested by Hoog are to either encrypt all the data or else not to cache data on the mobile device. Upon his alarming security discoveries he spent a week with Google discussing his concerns regarding Google Wallet`s vulnerabilities.


“While it`s nearly impossible to provide 100 percent secure systems, it`s pretty attainable to developed reasonably secure systems,” said Hoog, according to PCMag.

Disclaimer: This editorial content is not provided or commissioned by the credit card issuer(s). Opinions expressed here are the author's alone, not those of the credit card issuer(s), and have not been reviewed, approved or otherwise endorsed by the credit card issuer(s). Reasonable efforts are made to present accurate information, however all information is presented without warranty. Consult a card's issuing bank for the terms & conditions.
All rates and fees, and other terms and conditions of the products mentioned in this article/post are actual as of the last update date but are subject to change. See the current products' Terms & Conditions on the issuing banks' websites.
Add to Favorites:

Related News:

A New Priority Pass Restaurant and Lounge in Washington D.C.

Posted: July 16, 2018

Hitting the lounge for some rest and relaxation when flying can be a great perk. And now people with Priority Pass membership - or a credit card giving them Priority Pass lounge access - have two new options to check out when passing ... Continue reading
New LL. Bean Credit Card

Posted: July 13, 2018

L.L. Bean's credit card portfolio was purchased by Citi Retail Services, and they have now partnered with MasterCard to launch a new credit card, offering 4% on purchases made at L.L. Bean. But that is not all; With the L.L. Bean ... Continue reading
5,000 Bonus Points From Hilton and Amex Offers

Posted: July 12, 2018

Are you planning a trip and thinking about staying at a Hilton Hotel? If so you might want to check out this new deal at Amex Offers, providing cardholders with 5,000 Membership Rewards points when they book a stay of $250 or more at ... Continue reading
Get the latest news, articles and expert advice delivered to your inbox. It's FREE.
Earn 5% cash back at different places each quarter like gas stations, grocery stores, restaurants, Amazon.com, or wholesale clubs up to the quarterly maximum each time you activate.
For Excellent, Good Credit
We'll match all the Miles you've earned at the end of your first year. For example, if you earn 30,000 Miles, you get 60,000 Miles.
For Excellent, Good Credit
0% Intro APR on Balance Transfers and Purchases for 18 months. After that, the variable APR will be 15.74% - 25.74% based on your creditworthiness*
For Excellent, Good Credit
You've successfully subscribed!

Please specify the following:All these fields are optional

Your Credit History
Themes you are interested in:

By providing this information you help us make our news letters more useful and informative. Thank you!