Friday, September 11, 2009

Internet is "Card Not Present"...

"Card Not Present" Fraud is Growing Rampantly!

HomeATM Eliminates "Card Not Present" Fraud by enabling transactions to be conducted in a "Card Present" Environment.

HomeATM provides a low cost, 2FA 3DES E2EE PCI 2.x Certified Solution which allows Internet Retailers and Consumers to level the playing field by eliminating the "card not present" environment. 

If an online consumer was instructed to  "Swipe their Card thereby capturing the data on the magnetic stripe, it would be, by definition, a "card present" transaction. 

Therefore, our device would eliminate "card not present" fraud by "morphing" the "card not present" environment into a "card present" environment.  Yes? 

You might say that HomeATM changes the way card information is swiped. 

The way it is done now, the card details are "swiped by the fraudsters."   Does it not make more sense for the online shopper to "swipe" their own card details? Then again, we could ignore all the red flags and just keep on typing!

No let up by fraudsters as online card spend soars | Response Source

Fraud prevention specialists reveal Britain’s top UK card fraud hotspots

Many of Britain’s high street shops may have been affected by the economic downturn, but millions of consumers have been more than happy to spend their money online and through mail order with their favorite retailers. However, once again the dark side of card usage is revealed as fraud specialists, the 3rd Man, unveil the extent of criminal card activity and in particular the worst places in Britain for attempted card fraud.
An analysis of the 3rd Man’s comprehensive and detailed records shows that between August 2008 and August 2009, shoppers spent an estimated £46 billion using their cards in ‘card not present’ transactions, the term used to describe purchasing when, for example, a customer is buying online or by phone. Of this figure, fraudsters have tried their best to relieve retailers of more than half a billion pounds worth of goods.

“Although Britain has been in a serious recession, it appears that many consumers have been happy to spend their money over the Internet, which is good news,” says Andrew Goodwill, fraud specialist with the 3rd Man.

“However, fraudsters show no signs of giving up. They know that online shopping has become big business and they try every scam imaginable to dupe retailers. More and more honest people are using their cards to buy over the Internet, but unfortunately more and more fraudsters are also upping their game.” 

Editor's Note:  Time to "up OUR game" or these "jokers" will continue to steal our identities, cash, and peace of mind.  Eliminate Typing, Start Swiping and "Card Not Present" fraud will be eliminated. It's really not that difficult to grasp the it?  

Reblog this post [with Zemanta]

How To Hack an ATM Part IX (Collect All 10!)

ATM Thefts

EFT Canada Announces Agreement with Bell Canada

Toronto, Sept. 10, 2009 -PIN Payments News Blog- EFT Canada Inc. (TSX VENTURE:EFT), a leader in electronic transaction processing, today announced an agreement with Bell Canada, the country's largest communications company, to provide its Bell Business Markets division with a fully integrated business-to-business (B2B) and business-to-consumer (B2C) electronic transaction processing platform.

The solution will enable customers of Bell Business Markets to automate and process the collection and disbursement of funds online.

The EFT Canada application is a division specific solution, acting as a virtual gateway, simplifies and automates the processing of electronic funds transfer in Canada. The solution is expected to assist the Bell Business Markets in competing for and completing special projects.

"Through our comprehensive and leading solution, the Bell Business Markets is gaining a powerful and easy to use transaction processing platform," said Jonathan Pasternak, EFT Canada President. "Having been chosen by Bell as a vendor and being able to meet their high standard vendor code of conduct and practices, further enforces our credibility in the marketplace."

EFT Canada, founded in 2003, is a financial processing company that offers a complete solution to the collection and payment processing needs of small and medium sized business merchants, banks, credit unions, and other financial firms in Canada and the United States. The Company develops, maintains and delivers innovative electronic transaction processing technologies, such as customized electronic payment and collection processing solutions and gift and loyalty card services, by drawing on its operational and applications expertise. For more information, please call Jonathan Pasternak 416-781-0666 or visit .

Source: Company press release.

Reblog this post [with Zemanta]

TransFirst Releases Way Systems way5000

Boston, Sept. 11, 2009 -PIN Payments News Blog- WAY Systems, manufacturers of mobile POS solutions and TransFirst one of the leading providers for merchant acquiring solutions announced today the release of the way5000, a credit, PIN-Debit, low-cost, pocket sized mobile point of sale device. The way5000 will be fully supported and sold throughout the TransFirst sales network.

“WAY Systems is very pleased to continue our long time partnership with an industry leader like TransFirst. WAY has built a reputation for bringing high quality, low-cost mobile point of sale devices to the mobile merchant market which has long been an important market segment for TransFirst. We are excited to be able help TransFirst enhance their leadership position with those mobile merchants”, said Mike Ryan Director for Distribution Channels for WAY Systems.

“Mobile merchants are a key part of TransFirst’s overall strategy. WAY Systems is an excellent fit to ensure we provide our merchants a cutting edge product that rounds out our suite of products and services and provides our merchants with a robust mobile device”, said Steve Cadden President and Chief Operating Officer for TransFirst.

About WAY Systems, Inc.

WAY Systems has designed, developed, tested and delivered end to end payment solutions for mobile merchants all over the world. Our products and services are designed to meet the payment transaction needs of mobile merchants and exceed industry security standards. We empower merchants to conduct business any time any where and increase their revenue by accepting credit and pin based debit cards. WAY’s innovative mobile POS devices and dedication to service make us the ideal partner for you to conduct Transactions Without Boundaries. Users of WAY terminals are invited to explore the limitless possibilities of commerce.

About TransFirst

A leading provider of secure transaction processing services and payment enabling technologies, TransFirst offers innovative products and services designed with financial institution, independent sales organization, healthcare, eCommerce, government and merchant customers’ unique needs in mind. By collaborating with our customers and utilizing strong industry knowledge, we help them grow their businesses. Founded in 1995, TransFirst continues to attain significant market share and world-class expertise in growing and profitable industry segments. Built on a platform of personal service, customer commitment and flexible pricing, TransFirst is headquartered in Hauppauge, New York, and has operations facilities in Aurora, Colo., Louisville, Colo., Omaha, Neb., Kansas City, Kan., and executive headquarters in Dallas, Texas. Company-wide, TransFirst currently processes approximately $30 billion in annual sales volume for more than 175,000 merchants and more than 1,000 financial institutions. For additional information, please call 1-800-745-2659

or visit )

Source: Company press release.

How to Hack an ATM - Part VIII (Collect All 10!)

Pair steal 800 lb ATM with $96G inside

By Sam Wood | Inquirer Staff Writer

In our ongoing series "How to Hack an ATM" we bring you this from

No pictures yet, so here's a picture from a previous "How to Hack and ATM" post.

Police are looking for a pair of brazen, "sophisticated" thieves who disconnected an 800-pound ATM with about $96,000 inside and rolled it out of a Delaware County hospital on a dolly.

The ATM, minus the cash, and the van the thieves used for their getaway were found aflame in Southwest Philadelphia last night, more than 24 hours after the the heist at he Delaware County Memorial Hospital in Upper Darby.

Upper Darby Police Superintendant Michael Chitwood said the pair, wearing baseball caps and keeping their heads down to conceal their facial features from surveillance cameras, disconnected three cables and successfully disarmed the ATM's alarm to carry out their caper.

"This was sophisticated, well planned, well managed," Chitwood said. "When you view the video, they didn't have a care in the world. They knew what they were doing and where they were going.

With one carrying a clipboard and the other pushing a dolly, the pair entered the hospital's lobby about 8:24 p.m. Monday and left two minutes later with the ATM, which was valued at $17,000 and had in excess of $96,000 inside, police said.

At 8:45 p.m., they are seen leaving the parking lot in a white Ford econoline van.

Continue Reading

Wal*Mart Phisher Pleads Guilty

Guilty plea in Wal-Mart phishing case

11 September 2009 - 11:54 - Finextra

A member of a phishing gang that stole financial information from thousands of people and used it to open credit accounts at Wal-Mart stores has pleaded guilty.

Tien "Tim" Truong Nguyen, from California, pleaded guilty to conspiracy, access device fraud, aggravated identity theft and being a felon in possession of a firearm, the day before his case was set to go to trial.

Nguyen was arrested in 2007, accused of setting up Web sites designed to look like they belonged to banks and other firms like PayPal. He then sent out phishing e-mails directing victims to the sites, where they were asked to enter sensitive information.

The scam netted him, and Eastern European accomplices, thousands of credit and debit card numbers, social security numbers and other personal identification information.

Continue Reading at Finextra

29 US Banks Receive Mobile Banking “Report Card” From ABI Research

Mobile Money Research Service | Mobile Banking: US Banks Report Card
NEW YORK - September 10, 2009 Contact: Christine Gallen

Contact PR

It has been two years since mobile banking was introduced in the United States, and analysts at ABI Research believe it is time to assess its progress, with a focus on the user-friendliness (or otherwise) of the services on offer. The firm has published a mobile banking “report card” which assesses 29 banks on the discoverability and accessibility of their mobile banking services.

Senior analyst Mark Beccue says, “People are asking ‘Is mobile banking taking off in the US?’ For that to happen, two things are required: the services must be easy to find, and accessible to a broad range of consumers . So the ‘grades’ in this report card are not about subscriber numbers or any other measure of success, but about how consumer-friendly the banks’ offerings are.”
The results are as follows:

                        A — Exceptional: BB&T, Eastern Bank, Fifth Third Bank, Northeast Bank,    USAA, Wells Fargo

                        B+    Very Good: Bank of America, Chase

                        B — Good: Capital One, US Bank, Huntington Bank

                        C — Average: America First, Bancorp South, Citibank, PNC, Wachovia

                        D — Below Average: Carolina First, 1st Bank, IBC Bank, Mercantile Bank, Regions, SunTrust, Synovus

                        F — Failing: M&T, Provident Bank


No mobile banking offering: Citizens Bank, Comerica, HSBC, KeyBank
Of 29 banks examined, 17 are the nation’s largest retail banks. The remaining dozen banks are a sampling of other community and regional banks.

Summarizing the results, Beccue says, “We have two observations/recommendations. First, mobile banking’s reach in the US isn’t as good as it could be. If banks want mobile banking to be ubiquitous and available to as many consumers as possible, they’ll have to promote text messaging in particular as the method of choice. Secondly, if you’re in the retail banking business and you don’t have a link – or at least a list of your mobile banking services – on your website’s homepage, then you’re undermining your whole effort. Discoverability is critically important.”

Mobile Banking: US Banks Report Card” evaluates and grades 29 US banks on the reach, breadth of services offered, security, and discoverability of their mobile banking operations, resulting in a report card which shows the leaders and laggards of mobile banking in the US.

It forms part of the firm’s Mobile Money Research Service.

ABI Research provides in-depth analysis and quantitative forecasting of emerging trends in global connectivity. From offices in North America, Europe and Asia, ABI Research’s worldwide team of experts advise thousands of decision makers through 25 research and advisory services. Est. 1990. For more information visit, or call +1.516.624.2500.

Reblog this post [with Zemanta]

Society of Payment Security Professionals Announcment

SOURCE: Society of Payment Security Professionals

The Society of Payment Security Professionals Announces New CPISM/A Training Dates and a New Industry Certification

As Membership Grows So Do Offerings

Payment Security Professionals

PARK CITY, UT--(PIN Payments Blog- September 11, 2009) - The Society of Payment Security Professionals (SPSP) announced today that due to high demand Certified Payment-Card Industry Security Manager (CPISM) and Certified Payment-Card Industry Security Auditor (CPISA) training courses will be held once each quarter. Courses were booked to capacity the past two quarters and the numbers are anticipated to remain the same for the upcoming course scheduled for November 10-13th, 2009 in Dallas, TX.

In addition to increasing the frequency of public CPISM/A courses, the SPSP also announced that it will be unveiling a new certification in 2010. Like the CPISM/A certifications, the new certification, Certified Payment-Card Industry Privacy (CPISP), will be created by the Society of Payment Security Professionals (SPSP) with the collaboration of industry and educational experts. CPISP will focus on privacy and regulatory information within the Payments Industry as it applies to PCI DSS.

Privacy and regulatory expert, Dr. Heather Mark, has said "We have received an overwhelming amount of interest from people in the Payment Card Industry wanting to increase their knowledge regarding privacy and regulation. This new certification will educate participants on these issues and help identify them as experts in the industry."

"In response to the large amount of inquires we receive about privacy and regulatory issues, an article focusing on these issues has been and will continue appearing in Secure Payments Magazine," says Dr. Mark. The next third quarter issue of Secure Payments is scheduled to be released on October 1st, 2009. This issue includes a product guide and several articles focusing on emerging technologies as well as Dr. Mark's regulatory column.

For more information about the SPSP, any of the certifications offered, or Secure Payments Magazine please visit, or contact

About the Society of Payment Security Professionals

The Society of Payment Security Professionals' objective is to provide individuals and organizations involved in payment security with an online community to share information, and access education and certification opportunities. Society members come from a variety of businesses including card brands, merchants, acquirers, ISOs, and more. Though their organizations may vary, they all share one purpose: to protect sensitive customer data using the most current, viable technologies and processes. The SPSP is managed by The Aegenis Group.

Media Contact:

Tracie Byron

Email Contact


Society of Payment Security Professionals

Director of Business Development

Never Forget!

Finovate 2009 - Today is the Last Call for Early Bird Registration

Finovate 2009 - Last Call for Early Bird Registration!

Finovate2009_logo-140px.jpgFinovate will return to New York City on Tuesday, September 29 to showcase the best new financial and banking technology innovations from established leading companies and hot young startups. Handpicked from hundreds, the companies get a mere 7 minutes on stage to demo (no powerpoint allowed) their latest and greatest.

Early bird registration closes Friday, Sept. 11th - so if you're interested in attending and saving some money in the process, be sure to register ASAP!   It's a great event and HomeATM was honored to be handpicked from the hundreds of companies during Finovate Startup09 last April.  Below is our 7 minute (no powerpoint allowed) demo on our P2P "real-time" 2FA 3DES DUKPT E2EE PCI Certified 2.x Money Transfer Application.
New iPhone Anti-Phishing Feature Fails Researchers discover iPhone OS 3.1's anti-phishing feature is not working properly

Sep 10, 2009 | 03:46 PM By Kelly Jackson Higgins


The new Apple iPhone OS 3.1 software comes with a new anti-phishing feature for the Mobile Safari browser, but researchers say the filter doesn't work.

"I've not been able to get it to block anything," says Michael Sutton, vice president of research at Zscaler, who has been testing the mobile browser's security feature against several phishing sites identified on PhishTank. While Apple's Safari for the desktop blocks many of the sites, the iPhone's mobile version didn't block any that he tested.

Continue Reading

Reblog this post [with Zemanta]

Placecast Announces Study on mCommerce Usage

San Francisco, (PIN Payments News Blog) -- Today 1020 Placecast announced the beginning of a six-part series exposing the realities of America's consumer and what they really want to use their mobile device for when it comes to shopping, mobile advertising, mobile marketing, coupons and location-based services.

The Alert Shopper is an online series that is located at, featuring both first-person and third-party research in conjunction with Harris Interactive on consumer shopping habits and interest around the use of mobile devices and alerts when shopping.  With all of the hype surrounding emerging mobile content and mobile advertising, Placecast sought out to talk to America's consumer, face-to-face and captured quite a bit of insightful feedback on what people want and don't want.

Over the next few months, the Alert Shopper blog will feature unique insights into the mobile usage patterns of today's American consumers, quantitative survey research from Harris Interactive as well as a broad range of retail shopping trends. You'll meet Joni, a 46-year-old mother who talks to us about her dependence on her cell phone and her tactics of savvy shopping and brand-loyalty. Then you'll meet Joseph, a 31-year-old early adopter, who discusses exactly how he looks for sales and what retailers like Levi's can do to improve his experience.

These real consumer profiles are supplemented with quantitative survey research from Harris Interactive, focused on gauging interest levels in different types of mobile marketing, as well as a broad range of retail categories.

The Alert Shopper will cover trends as they relate to multi-location retail outlets like Target, Walmart, Kroger, Safeway, Best Buy, Kohl's, Home Depot, Walgreens, Lowes, CVS, Sears, SuperValu, Rite Aid, Macy's, Publix, JC Penney, GAP, Meijer, Staples, Toys 'R' Us, Office Depot, Nordstrom, Whole Foods, Menards, Dillard's, Giant Eagle, Auto Zone, PetSmart, Neiman Marcus, The Shack, Sheetz, Starbucks, and Dick's -- to restaurants like Sonic, Applebee's, Chili's Olive Garden, Red Lobster, Friday's, Burger King, McDonald's, Jack in the Box, KFC, Taco Bell, Pizza Hut, Subway, Wendy's, Outback, Arby's, Chick-Fil-A, Quiznos and The Cheesecake Factory .

Also the series will take at look at specialty stores such as REI, American Eagle, Pottery Barn, Williams Sonoma, Crate & Barrel, Children's Place, Brooks Brothers, Coach and Chanel. "It's our hope that The Alert Shopper will pioneer research in retail as it relates to understanding the role of the mobile device," states 1020 Placecast CEO Alistair Goodman

The first installment of the Alert Shopper can be found here:

New installments will appear monthly on the site:  (  To sign up for alerts on new installments, follow the series by adding @placecast on Twitter.

About 1020 Placecast, Inc.

1020, Inc. is the developer and owner of Placecast Media, the first location-based platform specifically designed to use digital marketing on the web and mobile to drive consumers into physical environments. 1020's groundbreaking Placecast service recently earned the company the OnMedia Top 100 Award, given to game-changing companies in the marketing, branding, advertising, and PR industries. Current partners include NAVTEQ and Alcatel-Lucent, and current advertisers include Microsoft Windows Mobile, FedExOffice, Avis and Budget Rental Cars and Hyatt Hotels. 1020 is funded by Voyager Capital and Onset Ventures.

For more information about Placecast, visit .

Source: Company press release.

Reblog this post [with Zemanta]

Disqus for ePayment News