Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

CurrentC Alerts Users of Unauthorized Access to Email Addresses

spacemanspifff said:
Why do people in the US seem to use Credit Cards for everything, don't you have Chip&PIN systems? Here in the UK we can already use our ATM cards to pay for stuff at the checkout using Chip&PIN. If you do this, the money is transferred from your checking account to the store directly, so does not involve a Credit Card company. A bit like the CurrentC system, without all the scanning hassles.

However, using this method, you don't have to give your bank or other details to any third party (unlike CurrentC) and this service is run by the banks themselves. I would guess the banks are charging the retailer for the service, as some smaller stores will not let you pay this way unless your purchase is above a certain amount, usually £5.

Clearly MCX can't operate this payment clearing service for free, so they are going to use data mined advertising, which means these stores are basically transferring their banking charges to their customers.

I am also wondering if the CurrentC system could be vulnerable to a Man-in-the-Middle attack. Where someone may be able to scan the QR code shown on your phone screen (perhaps with another phone) and then take money from your account using your code?

Finally, do you have these kinds of ATM cards in the US and if you do, can you store and use them with ApplePay?
Click to expand...

Not really. I am able to use my ATM at many local stores, but it's far from all. There's a PIN but no chip.

It's useless for online shopping, however. And it can't be added to Apple Pay, unfortunately.

edit: btw, just for context, I live on the east coast (Connecticut) and my bank is Peoples
 
giantfan1224 said:
If you mean that Apple needs Walmart more than vice versa because Apple probably makes more having their products in Walmart than Walmart makes selling them, then I agree. However, Apple hardly needs Walmart to be successful. In fact, as someone else stated, if Apple pulled all their products from Walmart tomorrow, someone would quickly fill that void. I doubt it would even result in the slightest blip on an earnings statement. You do realize Apple's valuation is more than twice that of Walmart's, don't you?
Click to expand...

Agreed. Apple doesn't need Walmart, but there's not much sense in removing their products over this payment dispute.
 
Last edited by a moderator:
gleepskip said:
Poorly-chosen passwords for user accounts != breached DB table dump.
Click to expand...

That wasn't my point. My point was this is a knee jerk reaction by Apple fan boys protecting their shield when in reality this email hack has little to nothing to do with payment security.
 
THIS. IS. HILARIOUS! And I doubt the "hack wars" are going to stop there. This "CurrentC" thing is going to get so much thrown at it it's not even going to keep up. I'll be surprised if they're still even operating in 2016.

I used ApplePay for the first time at Walgreen's yesterday and it was SO EASY. The girl at the register was even amazed by the simplicity. She said that was her first time seeing it in person (as was mine too haha).

CVS could have easily had my business (I hardly ever go to Walgreen's) but I specifically wanted to use ApplePay and since they don't accept it, well, that means no money for them from me. It was only a $12, but imagine that multiplied by 100,000 ... then you'll understand why everyone is saying CVS, Walmart, Best Buy, CVS, etc. are shooting themselves directly in the foot by not accepting Apple Pay.

Yes, Apple's services aren't hackproof (we know that from the recent iCloud celebrity nude leak), but the way Apple Pay was designed, you'd have to be one hell of a hacker to get that information ... because nothing is stored in "the cloud." Everything is on the phone, so you have to actually have access to the device. And most people remote wipe their iPhones when they lose them anyway, and even if you don't ... YOU NEED THE FINGERPRINT, which is something that can't be "hacked" or "duplicated."

APPLE PAY JUST "WORKS."
 
Mangchi said:
Exactly my point. Wasn't Apple just in an iCloud hacking scandal?
Click to expand...

Nope. The fact that some users had their accounts hacked doesn't mean iCloud was hacked. No matter how secure a system is, a user with a crappy password is always susceptible to hacking.
 
Oh this is just hilarious. And these clowns expect people to give them their SSN and Checking Account information?
 
Anyone else find it totally amusing if you go read the MCX blog, in one post they talk about how secure their system is because data is stored in "the cloud" and the next blog post is an alert about a data breach?

Priceless!
 
CoilTap said:
Nope. The fact that some users had their accounts hacked doesn't mean iCloud was hacked. No matter how secure a system is, a user with a crappy password is always susceptible to hacking.
Click to expand...

Wouldn't a safe company have things in place to prevent users from having easy passwords?
 
Mangchi said:
Since you understand it so well, how can a hacker, who hacks email, gain access to the middleware, the servers, and the processor servers (which are hosted by multiple sub systems and processor vendors?)

Please explain.

BTW: I get paid to build payment processor systems, which I why I felt the need to join this discussion.
Click to expand...

Nobody cares where they hack the info, we don't want it hacked, PERIOD. :rolleyes:

This stupid system plans to store too much info that we don't think they really need for us to buy cough drops. And this story shows they are incapable of protecting it.

So, it's great that you understand more technical details than most, but I fail to see why anything you have said should make us feel better.
 
bfh123 said:
Anyone else find it totally amusing if you go read the MCX blog, in one post they talk about how secure their system is because data is stored in "the cloud" and the next blog post is an alert about a data breach?

Priceless!
Click to expand...

"Cloud" means nothing. Cloud is now another word for a third party service that hosts something.
 
machtv said:
why all the hate on CC just because they are doing things different. if someone wants to use CC then let. no need to have hatred towards them
Click to expand...

Seriously, have you been paying attention?

People here hate CC because it's a system that is demanding exclusivity. An inferior system that won't let people use other, more secure and convenient ways of paying by mobile.

If they weren't turning off their NFC equipment to stymie the likes of Apple Pay and Google Wallet we wouldn't give a damn about them. Maybe just have a chuckle at the dumb fools who choose to pay that way.
 
Mangchi said:
Thats like saying I can fly a plane because I can drive a car because they are both forms of transportation. Just because you hack into a system doesn't mean you have access to everything.
Click to expand...

No, it's like saying that a plane can go down just the same as a car can get hit. Even the big boys get hacked. And so far MCX isn't even acting like the big boys...

True that a hack doesn't get you everything. But a hack gets you in, and any good termite knows that once you're in you can keep going until you're discovered. Sometimes you can't help being discovered fairly early on, but sometimes you can get quite far before either revealing how far you've gotten (and thereby exposing yourself) or being discovered. Point is, this is just a tip of an iceberg

To borrow an idea from Douglas Adams' writing (or maybe it's a direct quote - not certain): When trying to design a system that's foolproof, one should never underestimate the creativity of a fool. Same goes for hack-proof systems...
 
It's laughable just how backwards and outdated CurrentC is.

also shocked at how little foresight MCX has, to think their approach to mobile payments stood a chance. And a poor veiled attempt at making this about the benefit of the consumer, when all they wanted was to bypass CC fees as merchants.

For what? These companies weren't going to pass these on to the consumers, rather fatten their own wallets...all at consumers expense.

It's like they're completely out of touch with what consumers want...

Walmart for spearheading this effort, and all the companies that followed.
 
JAT said:
So, it's great that you understand more technical details than most, but I fail to see why anything you have said should make us feel better.
Click to expand...

Because what I am showing you is the folly in the ideology that a companies email is hacked therefore their processing system is faulty. When Apple gets hacked its the users bad passwords but with CurrentC its because they are stupid failures.
 
Seems they annoyed enough people that some decided to 'test' their security.
 
machtv said:
why all the hate on CC just because they are doing things different. if someone wants to use CC then let. no need to have hatred towards them
Click to expand...
I have a extreme dislike toward entity that deliberately disrupt the use of technological innovation. So yes Im f'in pissed
 
Mangchi said:
That wasn't my point. My point was this is a knee jerk reaction by Apple fan boys protecting their shield when in reality this email hack has little to nothing to do with payment security.
Click to expand...

Your point was lost. Now that I understand your point, it's not a knee-jerk reaction. Someone breached CurrentC and got a user list. That is completely unacceptable, regardless of the sensitivity level. No one (so far) has breached Apple and retrieved a user list.

CurrentC needs to be operated as securely as any bank and that security includes its list of customers.
 
eac25 said:
Cloud doesn't necessarily mean third party. But cloud does mean something: "I'm too lazy to describe all the details, or I don't even know them myself."
Click to expand...

Reading comp my friend... "another word" meaning it could necessarily mean third party. In processing cards... it refers to the service (Ogone, etc.)
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back