Researcher reveals flaws in Samsung Pay tokenization

Melisande Mual

10 Aug 2016 / 5 Min Read

According to Mendoza, Samsungs tokenization process, which replaces payment card data with random symbols during transactions to render the data useless to thieves, is not as randomized as it could be, potentially allowing malicious hackers to ultimately guess future tokens.

Additionally, the researcher showed that attackers can steal tokens from a users phone using a device that steals over-the-air signals from Samsungs MST technology, which mimics the magnetic stripes of payment cards in order to enable purchases at older point-of-sale terminals.

Samsung disputed the findings, noting that the report regarding the security of Samsung Pay is inaccurate.

Countries:

World

Melisande Mual

10 Aug 2016 / 5 Min Read

The Paypers is the Netherlands-based leading independent source of news and intelligence for professional in the global payment community.

The Paypers provides a wide range of news and analysis products aimed at keeping the ecommerce, fintech, and payment professionals informed about the latest developments in the industry.

Categories

Payments

Fraud and Fincrime

Fintech

Crypto, Web3 and CBDC

Regulations

M&A and Investments

Current themes

A2A Payments

Payment Orchestration

TradFi and DeFi Convergence

KYC, KYB and Digital Identity