A computer registered to UK payments body Apacs was used to anonymously rubbish research by Cambridge University academics into vulnerabilities in the Chip and PIN system.
The research, Chip and PIN is broken
, demonstrated a middleperson attack on EMV which lets criminals use stolen chip and PIN cards without knowing the PIN.
The paper was published the day after a nine-minute slot on prestige TV show Newsnight which detailed the loophole uncovered by researchers Saar Drimer, Ross Anderson, Mike Bond and Steven Murdoch.
The publication of the research - which had been circulating in the banking industry for about two months - on a Cambridge University technical blog
prompted a long rant by an anonymous poster using the handle Scrutineer.
"The quality of this so called research leaves a lot to be desired," railed Scrutineer. "At a time when other academics are under pressure because of doubts over the validity of their research and findings on climate research it is very worrying that others seem hell bent on following the same path...For Cambridge post graduates with doctorates one would have expected more than a first year electronic engineering student could achieve. Can we please have some meaningful security research rather than this alarmist opinion speak."
The poster was outed by a simple whois IP address search, which pointed to an computer registered at Apacs (aka the UK Cards Association).
As Ross Anderson acidly commented: "Pity Apacs couldn't get it together to put up a spokesman for Newsnight."
A spokeswoman for UK Card Association told tech newswire The Register that the posts violated staff Internet-use guidelines.
"We have a very clear policy on staff posting comments to blogs/newsgroups and as such this has now become a disciplinary issue," she said.