Google Wallet Hacked Again: This time it's scarier - simple and no root needed

I stated in a thread about this last night that its really not a big deal. Its still safer than losing your wallet. Plus if my phone is lost/stolen, first thing I'm doing is reporting it to Verizon who will block all phone and data access on the device rendering Google wallet useless anyway.

Sent from my Galaxy Nexus using Tapatalk

 

I dont even keep the paypal app on my phone. Google offering $10 to open an account shows how eager they were to get into the electronic funds biz. Their greed apparently outweighed the security issues of their clients. Glad i dont have a phone capable of using wallet.

Sent from my VTAB1008 using DroidForums

 

So, once again the lesson to the story is...


PUT A LOCK SCREEN ON YOUR JUNK.

Seems to be some type of a pattern here. Hmmm.
I mean, seriously!? How hard is it for people to understand that if you are going to use your device as a sensitive information access point you may want to AT LEAST lock the front door!

 

I find it hilarious that users were complaining and hacking their devices and concocting an install process to install Google Wallet.

I never thought I would say this, but Big Red was right all along.:blink:

 

True. I remember when everyone was pissed because they thought they Galaxy Nexus was being delays because of Google Wallet. It turns out the app has no place on a phone to begin with and VZW was right.

 

Its harder to install Google wallet than it is to hack it. But I still wouldn't call vzw right. They had no idea of this when they decided to block it

Sent from my Galaxy Nexus using DroidForums

 

I'd be willing to bet the rest of the money I make for the rest of the year that the primary reason VZW was against Google Wallet was because they didn't get a cut in the action. They spend more time and money in trying to lure you into using their bloat than security measures.

 

Exactly. It has nothing to do with a "design flaw" that is easily counteracted by being pro-active and de-activating your phone in the event it's lost or stolen. That's why VZW is trying to create a wallet-like app of their own. They don't get a cut out of Google Wallet.

 

Is it better to be right for the wrong reason, or wrong for the right reason?

 

A lockscreen actually won't help. Simply reflash the rom (or any rom, or even stock odin), install GW and re-initialize it. Your previous funds will be there (or if you have nefarious reasons, the original owner's funds). Your GW account isn't tied to your gmail account. It's tied to your phone's nfc chip. Doesn't matter what email address you use to log into GW with, the same funds will be there.

I learned this when I had to return my original GNex. Setup GW on the new phone and my funds from my original GW account were unavailable and they gave me a new $10, even though I used the same email address. Wiped and reflashed, this time logged in with a different account thinking I'd recoup the $20 that was on my original account ($10 for each activation). No such luck, even though I used a different email address on a fresh rom. It pulled up the same card I had with my other email address... and the $10 was still there. If you sell/gift/lose/return/part with your phone, call them and have them deactivate your GW account.

 

Neither, better to be right for the right reason

 

Sorry but you are somewhat incorrect.

Wallet is linked to your Gmail Account, the balance is related directly to your NFC Chip (so you cant scam $10 over and over) but the actual account information is all done through your Gmail account. I had to exchange my first G Nexus and I used wallet on it. When I installed on the new device I installed wallet and lost my old balance. Balance information is routed through the phone and not your google account. However; if you reflash a rom without doing a data wipe, you will still have the lockscreen on... if you do a data wipe, the account information is gone, rendering google wallet useless.

See the point here? Even if you have a balance on Wallet, if you dont sign into the corresponding Google Account, you cannot do anything with the funds.

Put a lock on your device if you use wallet. Case and point. Or... just dont store your credit card info into wallet...

Funny thing about this is most people are pissed about the concept of someone hacking the Wallet, when in reality you only have $10 on it... I would be more concerned about the $600 phone that was lost or stolen, then to worry about some jerk off stealing my free money in my wallet account.

Ignorance is bliss.

 

I think someone else mentioned this at some point, but its no worse than actually losing your wallet. If it could be more secure thats great, but like I just stated its just like losing your wallet with your credit cards in it. Same sort of scenario has to occur for this to be a real security breach. Also, if you dont put a screen lock on your phone with sensitive and personal information your just being stupid.... sorry, truth hurts!