CurrentC Alerts Users of Unauthorized Access to Email Addresses

[dotme]

CurrentC Website has "Security At Every Level" at the bottom of their home page...

 

[penajmz]

I hope Apple did this. Ha!

 

[gimikinc]

SSN being required!

Scanning a barcode isn't a bad idea, but SSN being required seems wrong to store with everything else needed to "clone" you! All said swiping a card isn't that hard either.

 

[nsayer]

What's the over/under now on CVS/Rite Aid turning their NFC readers back on? 10 days? 5?

Not a chance. There is a combination of hubris, self-interest and stupidity at work that is far too powerful to overcome.

 

[Drumjim85]

lol..Fail!!!

And customers are suppose to trust their CC information in this system.. ha, please!!

no, worse, they want your to trust them with your bank account information

 

[gadgetguy03]

Let's see how fast merchants drop this. And, they expect you to give them your SSN, checking account number, and drivers license number?!

Especially since they have stated publicly there are no fines for leaving.

 

[Patriot24]

Not a chance. There is a combination of hubris, self-interest and stupidity at work that is far too powerful to overcome.

Indeed.

Money, on the other hand, speaks to these people. When they realize that they're going to miss out on the holiday shopping season mobile paymentpolooza, they will reverse course.

 

[eac25]

I learned a long time ago as a software developer... don't write one line of code or place a single binary in service anywhere until you have assessed your security needs and have designed a strategy.

When dealing with personal data, if you can't do it safely, don't do it until you can.

It can be a little time consuming, but its not that hard with some common sense.

Problem is that real common sense is a fairly uncommon attribute....

 

[chrmjenkins]

Kudos to their marketing team for updating their logo so quickly.

 

[Romy90210]

This is comical LOL

 

[avanpelt]

Just shut it down and put this idea in the "failed experiment" column already.

 

[mdlooker]

Maybe they, should have hired a company to exploit their system to patch all of the holes. None better than one of those companies or some of those hackers.. pay them to save you!

I believe Apple, at one point, hired one of the big-time jail-breakers onto their team.

I know I would do that but hey, I'm not the CEO of Walmart or any of those other ones.

 

[Lotusman]

I think I just wee'd a little bit (laughing at the irony)...

 

[giantfan1224]

Not a chance. There is a combination of hubris, self-interest and stupidity at work that is far too powerful to overcome.

I'm with you on the stupidity part but at some point they'll have to answer to shareholders.

 

[Mangchi]

Just an FYI CurrentC and Apple all use third party processing systems (Ingenio/Ogone, etc.) and are engaged through API's and Middleware on closed systems. Just because CurrentC's email was hacked doesn't have any bearing into the security of its payment systems. Having worked for both Apple and a Multi-Global Bank (I am in processing systems) I can tell you, you are only as safe as the service you have invested in. Also, Apple's tokenization methods aren't anything new and are currently being implemented in many banks. The difference with Apple is they have less regulation and overhead allowing them to partner and implement those changes faster.

 

[Boatboy24]

Where was Tim Cook when this occurred?

 

[itr81]

If any of the members leave it will be big news now and could scare others to jump ship as well.

 

[utahman130]

Yes, I want to give my bank account info and social security number to CurrentC. Lol, Walmart, CVS, and 7-11 totally screwed themselves when they agreed to this mess.

 

[avanpelt]

Time to turn NFC back on, Rite Aid and CVS.

 

[Col4bin]

"Meh" is basically what the retailer's in bed with CurrentC are saying. "Who needs security anyways? As long as we save .001 pr/customer transaction, all is well..."

So basically, screw you consumer!

 

[Penn Jennings]

Am I bad for wanting hackers to hack the hell out of this crap app?!

Why, no, no are you NOT bad for wanting this. Better for it go now, when the damage will be the least.

 

[GuitarDTO]

What I really want to know is who did the hacking! As obvious as Apple seems, I doubt it. Google could have even been behind it. So many possibilities!

Truly an awesome/hilarious story though.

 

[deeddawg]

without you using your credit cards, how would one establish his/her credit score? From debit cards?

Now you're on to their secret plan... Mwahahaha!

 

[Mangchi]

Nobody is "getting" that information and storing it, its against the law for processors to hold that info. The info is entered, tokenized, encrypted, and passed to the processing service. A lot of people respsonding here have no clue how transaction systems or the regulations around it work.

 

[cjcampbell]

Great. CVS and RiteAid turned off Apple Pay, saying that CurrentC was "secure." Apple Pay transmits no customer data at all for hackers to steal. Which one is really more "secure?"