Barclay’s contactless cards open to fraud

| March 27, 2012
Barclay’s contactless cards open to fraud

An investigation by Channel 4 has found that Barclays’ contactless credit and debit cards, which are used by up to 13 million customers, are at risk of fraud.

In collaboration with mobile phone security company ViaForensics, Channel 4 discovered that smartphones integrated with near field communication (NFC) technology can steal data from the cards with just one swipe.

Details such as card number, expiry date and name can be stolen by brushing a smartphone past a wallet containing a contactless card.

In a statement Barclays said: “We are compliant with scheme rules for contactless cards and our fraud guarantee refunds any fraudulent losses to customers in full.

“The only information which can be obtained from a chip is the same as that which is printed on the front of the card – this does not include secure information such as PIN or signature (CVV) code.”

However, purchases can be made from online retailers such as Amazon without a PIN or three-digit security verification codes.

In related news an undercover investigation by The Sunday Times discovered that Indian call centres are selling credit card details and medical records of Britons for as little as 2p.

The information is being sold to marketing firms and criminals the investigation found.

Reporters from The Sunday Times met IT workers from call centres in India, who claimed to have 45 different sets of personal information on around 500,000 Britons.

The data included credit card information from major UK banks including customer names, addresses, and phone numbers, as well as card numbers, start and expiry dates, and three-digit security verification codes.

Other data being sold included information about mortgages, loans and insurance, which could be used by marketing companies to target customers.

It is estimated that around 330,000 people are employed in call centres in India.

Tags: ,


Comments (2)

Trackback URL | Comments RSS Feed

  1. RFID Protect says:

    It’s a story that’s been waiting to be told. We’ve spent the past three years trying to raise awareness of the potential vulnerabilities associated with this new technology; although here in the UK some will argue we’re in denial. Our findings have been collated into a suit of (free to download) PDFs, which can be found at our main website: browser search for ‘RFID PROTECT RESOURCES’

    Hope this information proves helpful in some way, and once again well done for breaking this story here in the UK.

  2. blink20 says:

    So now it is know for what purpose these items such as sleeves, wallets and so on are sold on Ebay. Bad banks!