Protecting credit cards from contactless theft

  • Thread starter Thread starter sophiecentaur
  • Start date Start date
  • Tags Tags
    Cards
Click For Summary

Discussion Overview

The discussion revolves around the security concerns related to contactless credit card payments, particularly the potential for card skimming and unauthorized transactions. Participants explore various protective measures, the effectiveness of existing technologies, and the implications of the current system design.

Discussion Character

  • Debate/contested
  • Technical explanation
  • Exploratory

Main Points Raised

  • Some participants express concerns about the vulnerability of contactless cards to skimming, suggesting that simple devices could potentially steal card information without direct contact.
  • There is discussion about the effectiveness of using materials like foil in wallets to block signals, with one participant estimating a potential protection of 20 to 30 dB.
  • One participant notes that no PIN is required for transactions under a certain amount, raising concerns about the ease of unauthorized purchases.
  • Another participant mentions that metal-lined wallets are available as a protective measure against unauthorized transactions in crowded areas.
  • There is a debate about the limits on contactless transactions, with one participant arguing that the ability to make multiple transactions under the limit could lead to significant theft.
  • Some participants question the design of the contactless payment system, suggesting that it is inherently insecure and could be improved with additional features like sensors or strain gauges.
  • One participant expresses a desire to retain the convenience of contactless payments while seeking solutions to enhance security.

Areas of Agreement / Disagreement

Participants generally agree on the existence of security vulnerabilities in the contactless payment system, but there are multiple competing views regarding the effectiveness of proposed protective measures and the implications of the current system design. The discussion remains unresolved regarding the best approach to enhance security while maintaining usability.

Contextual Notes

Some claims about the effectiveness of protective measures, such as the use of foil or metal-lined wallets, are not substantiated with empirical evidence. Additionally, the discussion includes varying interpretations of transaction limits and security features, which may depend on regional regulations and card issuer policies.

sophiecentaur
Science Advisor
Homework Helper
Messages
30,436
Reaction score
7,486
The contactless card payment system is very handy but there is talk of the possibility of skimming a card by brushing against a victim's wallet with a simple gizmo. In fact, I've seen it done on TV.

What are the thoughts about how effective the screening could be with a piece of foil placed in the wallet? I would have expected it to give a good 20 or 30 dB worth of protection.
Even two cards, side by side in the same wallet could possibly protect each other - I know my bus pass won't work when it's next to a credit card and I have to unfold my wallet before offering it up to the pad.
I started googling but then I though that some PF members might have the knowledge about this already and maybe, even have experimented.
 
  • Like
Likes   Reactions: Greg Bernhardt
Engineering news on Phys.org
This is an issue with the cards using chips right? The skimmer would still need the pin number though right?
 
Greg Bernhardt said:
This is an issue with the cards using chips right? The skimmer would still need the pin number though right?
No PIN is required; for amounts <$100 just access to the card is needed. Separation of up to a couple of metres between card and reader can be accommodated, apparently. Cafe diners have reported going to the desk to pay only to find card payment has already been taken and the receipt printed.

Metal lined card wallets are available to protect cards from being debited secretly in crowded places, on escalators, etc.

It's hard to believe banks and card companies could ever have approved such an insecure system so wide-open to abuse. I believe it is now possible to disable this facility on a card by card basis through your online account settings, if you don't wish to allow PIN-less transactions.
 
NascentOxygen said:
It's hard to believe banks and card companies could ever have approved such an insecure system
It's really scary! The only ameliorating factor is the fairly low limit to the value of money involved.
 
sophiecentaur said:
The only ameliorating factor is the fairly low limit to the value of money involved.
Ah! There you're wrong! If I steal your card, I can buy an any amount of groceries simply by swiping the card multiple times, each time paying just as the tally nears $100. So long as the purchases can be paid for in lots under $100, there is almost no limit, AFAIK. (Well, until you run up against the daily max for that card's owner.)

So while I can't buy an assembled bicycle, I can buy all the pieces and assemble it myself (well, those pieces priced under $100, anyway). :wink:
 
AFAIK, the limit in UK is only 10GBP which would make grand scale theft difficult.
I may invest in a lead lined box for my cards.
 
NascentOxygen said:
It's hard to believe banks and card companies could ever have approved such an insecure system so wide-open to abuse.
Agreed! So does anyone have any evidence/sources that this flaw actually exists?
 
Flaw? It's by design!

Local police report credit card fraud has soared since PIN-less payment was introduced to Australia.

I can't see why cards can't have a corner with a built-in strain gauge or sensor for light- or temperature-differential, and require that this corner be held between fingers whileever a PIN-less transaction is actioned. Then miscreants couldn't debit your account while the card is stowed in your pocket, wallet, purse, etc.
 
I'm really more interested in how to deal with the problem than anything. I have actually found the contactless system to be quite useful so I would like not to have to do without the facility.
NascentOxygen said:
I can't see why cards can't have a corner with a built-in strain gauge or sensor for light- or temperature-differential,
But present cards have none of those yet many people have one (even if they aren't aware of it).
 

Similar threads

Have You Shopped with Your Credit Card in Foreign Country?
  • · Replies 19 ·
Replies
19
Views
2K
Will a Magnet Damage My Credit Card?
  • · Replies 4 ·
Replies
4
Views
7K
MHB Best Outcome for Personal Finances using Credit Card Math Help
  • · Replies 1 ·
Replies
1
Views
2K
Which No-Fee Credit Card Offers the Best Perks?
  • · Replies 7 ·
Replies
7
Views
3K
Good suggestions to protect your personal identity
  • · Replies 37 ·
2
Replies
37
Views
7K
News Credit Card Regulations: Govt Addressing Fees, Rates & Transparency
  • · Replies 3 ·
Replies
3
Views
5K
Can Technology Ease Handwriting Challenges for Disabled Individuals?
  • · Replies 12 ·
Replies
12
Views
5K
Stole memory card from my camera?
  • · Replies 33 ·
2
Replies
33
Views
8K
Photon-Foil FTL Drive theory
  • · Replies 8 ·
Replies
8
Views
2K
Is My Graphics Card Compatible with S-Video Resolution for My TV Monitor?
  • · Replies 3 ·
Replies
3
Views
3K