Printed from http://www.electronista.com

Square system shown to be vulnerable to credit card fraud

updated 06:10 pm EDT, Fri August 5, 2011

Security researchers process stolen card numbers

Security researchers have demonstrated two potential vulnerabilities in Square's mobile payment system, which can reportedly be used to process fraudulent transactions. In a demonstration at the Black Hat security conference, Aperture Labs directors Adam Laurie and Zac Franken converted magnetic stripe data into a sound file to trick the Square mobile app into believing a card was being run through the swipe dongle for smartphones.

Custom software enabled the researchers to mimic the beeps of the genuine dongle, however the signal was transmitted to the smartphone using a stereo cable. Although the demonstration used cards that Laurie skimmed himself, the same technique is said to be effective if used with card data sold on the black market.

A second demonstration focuses on Square's dongle, which was used to skim data from a credit card to make a cloned copy. The researchers created code to convert the dongle's been signal into readable card information, as the Square hardware is said to lack encryption or other forms of protection.

Laurie suggests the vulnerability enables users to skim credit cards without any specialized hardware, all while appearing to process a legitimate transaction.

The researchers claim to have confronted Square in February, however the company reportedly dismissed the threat by claiming criminals will gravitate toward easier methods to accomplish credit card fraud. [via CNET]





By Electronista Staff
Post tools:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Advertisement

Recent Reviews

Lenovo Yoga Tablet 2 (Android, 10.1-inch)

Lenovo is building a bigger name for itself year after year, including its devices expanding beyond desktop computers. The company's l ...

Brother HL-L8250CDN Color Laser Printer

When it comes to selecting a printer, it's not exactly something most people put a lot of thought into. Printers are often touted as f ...

Moshi iVisor AG and XT for iPad Air 2

Have you ever tried to put in a screen protector that relies on static to cling to the screen? How many bubbles and wrinkles does it h ...

Advertisement

toggle

Most Commented

 
toggle

Popular News