Monday, June 6, 2011

Google Wallet Security Solid Until its Hacked

Image representing McAfee as depicted in Crunc...Image via CrunchBaseGoogle Wallet Security Solid Until its Hacked - Security - News & Reviews - eWeek.com

McAfee security researcher Jimmy Shah believes:



"An attacker has a good chance of extracting the authentication key from the Google Wallet application and creating a malicious application that emulates the official Wallet application to fool the Secure Element chip into giving up a user's credentials. "From here, the attacker can collect account information for sale or for attempts at cloning the data to new NFC cards," Shah wrote in a blog post.  Lookout Mobile Security CTO Kevin Mahaffey agrees with Shah that some sort of malicious application that can compromise the Google Wallet application or the provisioning process. Alternatively, an application could exploit the software in the Secure Element, enabling a hacker to grab credit card info.  read more

 Related:
 
 Prominent iPhone Hacker Blames Vendors' Buggy Code for Security Breaches 
 (from EWeek at 6-6-2011) 
 Security researcher Charlie Miller will deliver the keynote speech June 9 at the International Conference on Cyber Conflict. The conference, in its third year, is sponsored by the NATO Cooperative Cyber Defence Center of Excellence and will take place in Estonia. Millers keynote, entitled Why the Bad Guys are Winning the InfoSec War, will use the recent security breaches at PBS.org, RSA Security and HBGary Federal as examples, Miller told eWEEK. Miller analyzed recent events and determined th... read more»

Enhanced by Zemanta

Disqus for ePayment News