Moneycontrol » News » Wire News

Researchers say find Google Wallet security risk

Published on Sat, Feb 11, 2012 at 04:46 |  Source : Reuters

Like this story, share it with millions of investors on M3
0
0
Share on Tumblr

By Sinead Carew and Jim Finkle

NEW YORK (Reuters) - Security researchers say they have found a vulnerability in the Google Inc mobile payments platform which is currently available in phones sold by Sprint Nextel Corp .

Mobile payment services that allow consumers to pay by waving their phone at a check-out terminal instead of using a credit card have long been available in Japan and some other countries but are only just emerging in the United States.

Isis, a venture of Verizon Wireless, AT&T Inc and T-Mobile USA, is expected to launch an offering to compete with Google but has yet to announce a launch date.

The alleged vulnerability in the Google Wallet was identified by Joshua Rubin, a senior engineer with zvelo, a private Greenwood Village, Colorado, security firm.

Rubin developed an app dubbed Wallet Cracker that he says can break the four-digit PIN required to launch the Google Wallet app. He demonstrated how it works in a video on his blog ( http://bit.ly/zgO2L6)

Rubin said that he had disclosed his findings to Google and that the company "was able to confirm the issue and agreed to work quickly to resolve it."

However, Google declined immediate comment to Reuters except to say that it would have a response before long. Sprint representatives were not immediately available for comment.

Google's Wallet partners also include Citigroup Inc and payment network MasterCard .

Jimmy Shah, a security researcher for security software specialist McAfee, said on Friday that the vulnerability did not appear to be a very easy one to exploit.

But he said it was theoretically possible if a hacker was able to physically steal a user's phone.

Shah said that a hacker would need time to install the Cracker app and to install another piece of malware to disable the phone's security system before being able to run the Cracker app to retrieve the PIN number.

The hacker would also still need the phone itself in order to be able to make payments using the stolen Google Wallet.

"It's a nice theoretical attack but it's not a very simple attack," Shah told Reuters.

McAfee is owned by chipmaker Intel Corp .

(Reporting By Sinead Carew in New York and Jim Finkle in Boston, editing by Matthew Lewis)

  

PREVIOUS STORY

Accumulate Coal India; target of Rs 375: Dolat Capital

NEXT STORY

Need to raise FII invest limit in bonds: RBI draft report

Trending News

Business News
Windows 8 early adoption update to cost Rs. 800
Morgan Stanley bomb: Predicts India's 2012 GDP at 5.7% "Morgan Stanley bomb: Predicts India's 2012 GDP at 5.7%"

News

Truce in BJP? Modi meets Advani, Vajpayee

The meetings assume significance given the unease in the BJP and a growing distance between Modi and
Ranvir Sena chief killed, Bihar on high alert
Designation is just a word: Gautam Gambhir
Andhra HC orders prosecution of CBI judge
Coal blocks: CBI registers preliminary enquiry
Odisha: Patnaik suspends rebel MP, ministers
UP Budget proposes unemployment allowance
Commonwealth Games was a nightmare: SY Qureshi
CBI will clear PM in coal block allocation: Kejriwal
CD case: Amar, Mulayam will give voice samples
Uniform pay, working hours for pilots: Ajit Singh
UK: Briton pleads guilty of killing Anuj Bidve
Indian American wins Spelling Bee with 'guetapens'
Annan frustrated over Syria, all eyes on Russia
Tendulkar wants India to get back on top
ICC decides to continue with D/L method, DRS
NZ players could face club v country dilemma
Masand: 'Rowdy Rathore' is a mindless film
Masand: 'The Cabin...' delivers an unconvincing end
Tweets: 'Indian Idol' is back with a bang
Dibakar is the best director: Anurag Kashyap
Music Review: 'Teri Meri Kahaani' is youthful
Telugu Review: 'Adhinayakudu' is a family drama
Malayalam Review: 'Thiruvambadi...' is watchable
Windows 8 final test version released
Samsung Galaxy S III to hit stores on June 4
Google doodles the Queen's Diamond Jubilee
Facebook goes down temporarily
Shah Rukh to buy 50 pc stake at Dempo: report
Federer earns hard-fought win against Mahut
Euros more difficult than World Cup: Sneijder
Slim chance of India reaching Azlan Shah final

Re-listing Guidelines Lock-in On Promoter Grp Hold For 1 Yr Fm Date Of Re-listing

The latest earning numbers FIRST on CNBC-TV18
Videos

Jun 1 2012, 19:15

Market may dip 10-15% this month: Jeff Chowdhry

- in FII View

Jun 1 2012, 11:57

Raamdeo Agrawal lauds Q4 nos, sees drastic rate cuts ahead

- in MARKET OUTLOOK

Interviews

Jun 1 2012, 15:36 | Source: CNBC-TV18

M&M performed well on strategy, not fuel prices: Nayer  

Jun 1 2012, 11:29 | Source: CNBC-TV18

HDIL eyes revenues of Rs 2500 cr in FY13  

Subscribe to

Moneycontrol Newsletters

Moneycontrol.com offers you a choice of various sectoral and other newsletters for FREE!

Follow moneycontrol.com

Facebook Twitter Google Plus RSS Wap SMS SMS Alert iPad iPhone Blackberry OVI Android Window