Reply to post:

Farewell, Android Pay. We hardly tapped you


As it says, that's a long-known theoretical vulnerability, and one that

a) is not possible on certain cards where the result of PIN entry is cryptographically signed

b) is not applicable to contactless at all, since the card is not asked to verify the PIN

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019