CurrentC Alerts Users of Unauthorized Access to Email Addresses

Discussion in 'MacRumors.com News Discussion' started by MacRumors, Oct 29, 2014.

  1. MacRumors macrumors bot

    MacRumors

    Joined:
    Apr 12, 2001
    #1
    [​IMG]


    Just hours after publishing a blog post answering some questions about its upcoming CurrentC mobile payments system and touting the security of its cloud-based storage of sensitive information, the company behind the effort, Merchant Customer Exchange (MCX) has alerted users of unauthorized access to their email addresses.
    [​IMG]
    Details on the unauthorized access have not been disclosed, but iMore's Nick Arnott earlier this week took a look at some of the personal information being collected by MCX and CurrentC and noted that he could ping CurrentC's systems to look for valid registered email addresses on the system. While he did not find valid addresses, the system appeared capable of returning a substantial amount of personal information about such accounts.

    Security has of course been one of the main selling points of Apple's new Apple Pay system, with data stored in a Secure Element on the device and payments authorized through Touch ID and tokenized account numbers being used instead of actual credit card numbers to process transactions.

    Article Link: CurrentC Alerts Users of Unauthorized Access to Email Addresses
     
  2. dannyyankou macrumors 604

    dannyyankou

    Joined:
    Mar 2, 2012
    Location:
    Scarsdale, NY
    #2
    Lol, what a mess and it hasn't even rolled out yet.
     
  3. Indy2424 macrumors member

    Joined:
    Jan 24, 2011
  4. burnside macrumors 6502

    Joined:
    Jun 8, 2010
  5. randymac09 macrumors regular

    Joined:
    Aug 18, 2014
    Location:
    Maryland
    #5
    I don't even have words to describe the hilarity of this incident. :D
     
  6. sk1wbw Suspended

    sk1wbw

    Joined:
    May 28, 2011
    Location:
    Williamsburg, Virginia
    #6
    First, it's the email. Then the SSN. Then the checking account number.
     
  7. eac25 macrumors regular

    eac25

    Joined:
    Sep 27, 2013
    Location:
    ... somewhere under the rainbow ...
  8. ButteryScrollin macrumors 6502a

    Joined:
    Jul 29, 2014
    #8
    CurrentC is going to get everything thrown at it from a security perspective.
     
  9. penajmz, Oct 29, 2014
    Last edited: Oct 29, 2014

    penajmz macrumors 68040

    penajmz

    Joined:
    Sep 11, 2008
    Location:
    New York City
    #9
    Lmfao!!!!!! This is too good.

    I feel like I'm watching a soup opera unfold.


    Dun, dun, dun....what will happen next!? :eek:
     
  10. CoilTap macrumors regular

    Joined:
    Sep 19, 2014
    #10
    Well if this doesn't instill confidence I don't know what will. /s
     
  11. binaryspiral macrumors newbie

    Joined:
    Sep 9, 2012
    #11
    As if anyone was expecting these companies to take customer data security seriously...

    Queue Nelson Muntz...
     
  12. giantfan1224 macrumors 6502a

    giantfan1224

    Joined:
    Mar 9, 2012
  13. DotCom2 macrumors 68040

    Joined:
    Feb 22, 2009
  14. k1121j macrumors 6502a

    k1121j

    Joined:
    Mar 28, 2009
    Location:
    New Hampshire
    #14
    i know it was coming just to this soon .... yep ill stick with apple pay prefer to be the keeper of my information
     
  15. DJLC macrumors 6502a

    DJLC

    Joined:
    Jul 17, 2005
    Location:
    North Carolina
    #15
    Lolz. Yeah. A merchant-controlled cloud service is more secure than an encrypted secure enclave in my palm. This is stupid.
     
  16. jfischer macrumors regular

    Joined:
    Aug 18, 2014
    #16
    There is no way I'd ever use CurrentC with a direct link to my checking account. At least with a CC you have some protection against fraud, but if your checking account gets drained you are truly hosed.
     
  17. Dilster3k macrumors 6502a

    Dilster3k

    Joined:
    Jul 20, 2014
  18. joshuaclinton macrumors member

    Joined:
    Mar 28, 2014
    #18
    Let's see how fast merchants drop this. And, they expect you to give them your SSN, checking account number, and drivers license number?!
     
  19. Patriot24 macrumors 68030

    Patriot24

    Joined:
    Dec 29, 2010
    Location:
    California
    #19
    Another nail in the coffin.

    My prediction is that retailers are going to be bailing from the consortium like rats from a sinking ship before the holiday season.
     
  20. szw-mapple fan macrumors 65816

    szw-mapple fan

    Joined:
    Jul 28, 2012
  21. John.B macrumors 601

    John.B

    Joined:
    Jan 15, 2008
    Location:
    Holocene Epoch
  22. Eduardo1971 macrumors 65816

    Eduardo1971

    Joined:
    Jun 16, 2006
    Location:
    Lost Angeles, Ca. usa
  23. UhFive, Oct 29, 2014
    Last edited: Oct 29, 2014

    UhFive macrumors regular

    UhFive

    Joined:
    Sep 17, 2013
    Location:
    Texas
    #23
    Mess with Apple Pay users and you will have a bunch of "Consumers" upset, mess with Google Wallet and you're starting to piss off the programmers and the majority of "hackers". This just had bad written all over it. Unfortunaetly for retailers it looks like they are actually locked into a contract with CurrenC and were forced to close down their NFC terminals.
    It would be nice to see the Android and iOS "Hackers" do something together for once and expose all the flaws in this companies system. You don't need to release all the private information to the world, but just release it to all the news sites and major media.
     
  24. itr81 macrumors regular

    Joined:
    Jul 12, 2010
    #24
    Am I bad for wanting hackers to hack the hell out of this crap app?!

    Maybe this service will go still born and everyone can start accepting Apple Pay and Google Wallet payments again.
     
  25. yaxomoxay macrumors 68030

    yaxomoxay

    Joined:
    Mar 3, 2010
    Location:
    Texas
    #25
    Honest question. Do you think that Tim Cook heard about this before it hit the news? His comment on a "major event" regarding privacy was quite sybilline...
     

Share This Page