Samsung Responds To Samsung Pay Security Flaw

DroidModderX

DroidModderX

Super Moderator
Staff member
Premium Member
Joined
Oct 6, 2011
Messages
5,782
Reaction score
2,133

Yesterday a security expert uploaded a video of himself successfully skimming a payment token, loading it to a card device and using the stolen token to pay for a real life item. This was a proof of concept showcasing a Security Flaw in Samsung Pay. Today Samsung responded to the video.

This skimming attack model has been a known issue reviewed by the card networks and Samsung pay and our partners deemed this potential risk acceptable given the extremely low likelihood of a successful token relay attack. The card networks and issuers also run their fraud prevention algorithms on all payment attempts, including Samsung Pay. This serves as another layer of protection against token relay.
Click to expand...

Here is the good news. If a hacker does steal a pay token it is only good for one use within 24 hours. The thief would not have any of your credit card information. The skimming hack would be nearly impossible as it can only happen once the user initiates a payment with their device. The skimmer would need to be within inches of the device as it is being used to pay for something. The token would only be usable if you cancel the transaction that the hacker stole since the token is only good for one use.

It looks like this is nothing to be concerned about. The only way this could be a real issue would be if someone posed as a sales rep with a mobile payment system. As with everything else in life you will just have to use common sense with Samsung Pay.

via Samsung
 
akhenax

akhenax

Silver Member
Joined
Jul 13, 2010
Messages
1,714
Reaction score
380
Location
NY
DroidModderX said:
The token would only be usable if you cancel the transaction that the hacker stole since the token is only good for one use.​
Click to expand...

If I'm buying something with a credit card, and actually use the credit card, why in the world would I then cancel using the same credit card? Possible? yes. Likely? No.
I guess what I'm saying is, yes, I would consider this an acceptable risk.
 
jbal52

jbal52

Member
Joined
May 11, 2013
Messages
35
Reaction score
20
Location
Colorado
I have developed quite a liking for Samsung Pay and use it whenever I have access to the reader. I have to laugh at people who have to wait for those chip cards to process when people behind them are rolling their eyes. Samsung Pay is so unbelievably quick; it can still surprise me. After reading this explanation, I have little fear of continuing to use it.
 
mountainbikermark

mountainbikermark

Super Moderator
Staff member
Premium Member
Joined
Sep 5, 2010
Messages
7,570
Reaction score
4,043
I seem to remember a certain general (MacArthur) saying a successful attack would be extremely low right after Pearl Harbor was devastated as well.

Support Our Troops!!!
Beast Mode 4

<><
 
You must log in or register to reply here.

Most reactions - Past 7 days

Similar threads

DroidModderX
Samsung Pay Hacked! Allows Your Credit Card To Be Skimmed
Replies
7
Views
3K
shockracer
shockracer
dgstorm
Samsung Elaborates on How Samsung Pay Works
Replies
9
Views
3K
PereDroid
PereDroid
DroidModderX
Samsung Pay Coming To Gear S2 Smart Watch!
Replies
0
Views
2K
DroidModderX
DroidModderX
DroidModderX
Samsung Pay Launched Today in The USA!
Replies
5
Views
2K
sharkattack99
sharkattack99
dgstorm
Samsung Pay Gets Demoed on Video
Replies
0
Views
2K
dgstorm
dgstorm
Top