Community
When you are on a crowded bus, you don't know who is standing next to you and what that person is up to. There are a lot of weird and obsessed people out there...
Now, imagine your own car - what would you feel if after a couple of hours on a motorway, driving at high speed, you turned around and saw a complete stranger in the backseat...
That's exactly where "software-only" solutions - such as HCE or app-based mobile payments - lead us to.
It was hard to miss the news re Target's security breach, including today's "update" of the damage to 70m cards. Although the (forensic) jury is still out, several credible sources suggest that the breach occurred on the terminal OS level. That is the same OS which was considered mega-safe and which was designed to allow access to/from the authorized parties only.
Why did the Target breach took everyone by (huge) surprise? It's all about zero-day attack - a "black swan" event that brings the proverbial 20/20 hindsight.
The industry keeps forgetting that any software is just that - a piece of code. Which can be manipulated and exploited with a malicious intent that would strike out of the blue.
How many "Target" situations do we need to live through to grasp the difference between secure and "almost safe"?.. The latter is like being "almost pregnant" - you either are or you aren't, there is no middle ground.
This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.
Hassan Zebdeh Financial Crime Advisor at Eastnets
08 October
Jelle Van Schaick Head of Marketing at Intergiro
07 October
Kuldeep Shrimali Consulting Partner at Tata Consultancy Services
Nikunj Gundaniya Product manager at Digipay.guru
Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.
Please read our Privacy Policy.