|
Chris Knight posted:I don't have that option checked, but I think the Presto readers occasionally trigger my Apple Pay thing I'm 100% sure Apple Pay NFC only activates on home button double-press
|
# ? May 17, 2017 18:29 |
|
|
# ? Jun 8, 2024 09:34 |
|
Cocoa Crispies posted:I'm 100% sure Apple Pay NFC only activates on home button double-press if it's near an active reader offering a transaction it's either automatic or it activates when you rest your finger on the button, not sure which comes first when I use it
|
# ? May 17, 2017 18:30 |
|
|
# ? May 17, 2017 18:32 |
|
haveblue posted:if it's near an active reader offering a transaction it's either automatic or it activates when you rest your finger on the button, not sure which comes first when I use it it needs your fingerprint to unlock the card data
|
# ? May 17, 2017 18:39 |
|
hifi posted:Why in the world are they on a boat mar-a-lago is on a public waterway and boats aren't out of the ordinary there
|
# ? May 17, 2017 18:47 |
|
Cocoa Crispies posted:it needs your fingerprint to unlock the card data well yeah but does it prompt you to do that or wait for you to start either way, no double press needed
|
# ? May 17, 2017 18:59 |
|
spankmeister posted:CC company done hosed up. My bank disables new cards until you activate them over phone using a code in the letter my newest credit card had a label saying it must be activated by performing a chip+pin transaction first didn't test if that was actually necessary, but that would be sensible.
|
# ? May 17, 2017 19:15 |
|
Instant Grat posted:you can get a droid app to just read the cards w/ the phone's nfc reader. doesn't get you the cvv2, but you don't need that to buy a 40-gallon tub of lube on amazon Munkeymon posted:how are you passing NFC data to Amazon in this scenario?
|
# ? May 17, 2017 19:17 |
|
i mean i installed an nfc reader app and put it on my own card and the reader instantly went "yup here's your full card number, name, and expiration date", so
|
# ? May 17, 2017 19:42 |
|
i thought the cvv2 was required for all customer not present transactions?
|
# ? May 17, 2017 19:52 |
|
Amazon doesn't use it.
|
# ? May 17, 2017 19:53 |
|
also inb4 "lol you let an app scan your card" it was like a year ago and i haven't seen any charges to African Warlords Inc i turned on airplane mode before doing it and deleted the app afterwards
|
# ? May 17, 2017 19:54 |
|
Instant Grat posted:Amazon doesn't use it. Where are you that amazon don't require a cv2 ?
|
# ? May 17, 2017 20:04 |
|
Instant Grat posted:i mean i installed an nfc reader app and put it on my own card and the reader instantly went "yup here's your full card number, name, and expiration date", so was it your actual card number? i thought nfc used a temporary number per transaction
|
# ? May 17, 2017 20:06 |
|
Instant Grat posted:Amazon doesn't use it. they sure require me to enter one when I change anything about card or delivery information and iirc told me correctly when I mis-entered it but I could be wrong
|
# ? May 17, 2017 20:12 |
|
Perplx posted:was it your actual card number? i thought nfc used a temporary number per transaction It was Munkeymon posted:they sure require me to enter one when I change anything about card or delivery information and iirc told me correctly when I mis-entered it but I could be wrong https://www.quora.com/Why-does-Amazon-not-require-a-security-CVV-code-for-credit-card-transactions https://www.reddit.com/r/answers/comments/g8z9t/why_amazon_doesnt_ask_for_the_cvvcvc_when_i_give/ https://security.stackexchange.com/questions/21168/how-does-amazon-bill-me-without-the-cvc-cvv-cvv2
|
# ? May 17, 2017 20:15 |
|
I'm going to assume without reading any of those that companies can do literally anything they want with credit card transactions as long as they're willing to pay the penalties and Amazon is big enough that removing transaction flow barriers is worth the risk.
|
# ? May 17, 2017 20:32 |
|
close. higher rates without a cv2. although ive always had to enter one with a new card or they notice something different (ip address changes or something, i dunno).
|
# ? May 17, 2017 20:36 |
|
necrotic posted:close. higher rates without a cv2. although ive always had to enter one with a new card or they notice something different (ip address changes or something, i dunno). Yep same, always need cv2 with new card or large purchase. Payment processors like sage pay let you disable cv2 and postcode checking but most banks have punitive rates on moto transactions without cv2 now , maybe op's bank are retarded and haven't done this.
|
# ? May 17, 2017 20:44 |
|
haveblue posted:if it's near an active reader offering a transaction it's either automatic or it activates when you rest your finger on the button, not sure which comes first when I use it ok yeah testing it at home now iphone 6s+ will wake from sleep and ask for a fingerprint if i put an nfc reader on it, but the reader won't see anything without a fingerprint watch doesn't even want to be read by my android but it also requires you to have passcode or iphone authed to show a card
|
# ? May 17, 2017 21:05 |
|
Cocoa Crispies posted:watch doesn't even want to be read by my android but it also requires you to have passcode or iphone authed to show a card ok found a working app (android quality smh) and it won't make the watch prompt when held in a way that it can read the watch
|
# ? May 17, 2017 21:32 |
|
wouldn't surprise me to learn that amazon are simply big enough to negotiate special deals with cc processors and banks that let them get away with not requiring a cvv
|
# ? May 17, 2017 21:53 |
necrotic posted:close. higher rates without a cv2. although ive always had to enter one with a new card or they notice something different (ip address changes or something, i dunno). probably their internal checks and unusual account activity detection is good enough to negotiate the same rate for transaction without a cv2. they definitely check the billing address each transaction. I've had a small routine order fail because I changed my billing address with my card provider in anticipation of a move but I hadn't updated it on amazon in time.
|
|
# ? May 17, 2017 22:03 |
|
Cocoa Crispies posted:ok yeah testing it at home now yeah that's what I was getting at. I can pass by Presto terminals with phone in pocket, then when I take it out its awake and showing the card picture for apple 💰 (thanks for that autocorrect timb)
|
# ? May 17, 2017 22:35 |
|
redleader posted:wouldn't surprise me to learn that amazon are simply big enough to negotiate special deals with cc processors and banks that let them get away with not requiring a cvv pretty sure you have to provide it for your first payment and then once you save the payment deets amazon is storing a special token that's represents your card when being processed by amazon. if its stolen its useless without being able to send thru amazons payment processing system.
|
# ? May 17, 2017 22:39 |
|
i'm 100% certain that amazon has never asked me for the cvv2 for any of the cards i've used, and it's not hard to find loads of people on google saying the same thing
|
# ? May 17, 2017 23:33 |
|
Instant Grat posted:i'm 100% certain that amazon has never asked me for the cvv2 for any of the cards i've used, and it's not hard to find loads of people on google saying the same thing I can confirm, I just added a new Mastercard to my Amazon account without entering a CVV2.
|
# ? May 18, 2017 00:02 |
|
You can run credit card transactions with as little as a name and a number. Asking for more information is just about mitigating fraud risk. If you follow best practices and ask for everything, your payment provider eats the cost of fraud rather than passing it on to you. Amazon is confident in their own ability to detect fraudulent purchases in other ways. They're good enough at it that the rate of fraud is low enough that the decreased transaction friction outweighs the cost of fraud. Anyone could do the same if they had the same confidence and ability to eat the losses when an occasional fraudulent transaction gets through.
|
# ? May 18, 2017 01:58 |
|
Jabor posted:You can run credit card transactions with as little as a name and a number. Asking for more information is just about mitigating fraud risk. If you follow best practices and ask for everything, your payment provider eats the cost of fraud rather than passing it on to you. can you rephrase that in terms of equations or point me to some paper or something else that does no seriously i'm not being sarcastic, i'm actually curious about the sort of models people use to compute these things
|
# ? May 18, 2017 02:15 |
|
Deep Dish Fuckfest posted:can you rephrase that in terms of equations or point me to some paper or something else that does or alternately https://goatkcd.com/1838/
|
# ? May 18, 2017 03:13 |
|
Deep Dish Fuckfest posted:can you rephrase that in terms of equations or point me to some paper or something else that does that kind of thing is surely a closely guarded trade secret. So I am sure it is sitting on a public google drive document or on pastebin.
|
# ? May 18, 2017 03:19 |
|
Progressive JPEG posted:
1836
|
# ? May 18, 2017 03:53 |
|
Varkk posted:that kind of thing is surely a closely guarded trade secret. So I am sure it is sitting on a public google drive document or on pastebin. Nah that's highly technical information It'll be checked into an engineers public github
|
# ? May 18, 2017 04:06 |
|
flakeloaf posted:1836 1808 is pretty good as well.
|
# ? May 18, 2017 04:07 |
|
i like groupon's approach to pci compliance. definitely beats the poo poo out of ours
|
# ? May 18, 2017 07:54 |
|
http://www.taiwannews.com.tw/en/news/3161826 in wannacry news infosec falling over themselves to look at half-assed campaign indicators over detailed shared code https://baesystemsai.blogspot.co.uk/2017/05/wanacrypt0r-ransomworm.html and a nice breakdown of epichero http://blog.infobytesec.com/2017/05/nsa-shadowbrokers-leak-analyzing.html
|
# ? May 18, 2017 10:36 |
|
i'm the request for a cup of coffee's worth of bitcoin after giving up on holding you to ransom because you're too poor
|
# ? May 18, 2017 12:02 |
|
Instant Grat posted:i'm the request for a cup of coffee's worth of bitcoin after giving up on holding you to ransom because you're too poor seriously. what a bastard
|
# ? May 18, 2017 13:17 |
|
Don't forget to tip your waitstaff and the people who released your hostage family!
|
# ? May 18, 2017 13:36 |
|
|
# ? Jun 8, 2024 09:34 |
|
Perplx posted:was it your actual card number? i thought nfc used a temporary number per transaction Android pay and Apple pay do this. The chip has no ability to do this since it's not online
|
# ? May 18, 2017 14:12 |