Security gap in card payments?
Some retailers will pay out up to €200 in cash if you spend a minimum amount and pay by card.
If you've already inserted the card into the device and then withdraw it again, the payment process will be aborted and must be restarted by the cashier. The €200 will be forgotten and will not be included on the receipt.
If the cashier is not careful, he will still pay out the amount and then end up with a negative balance at the end of the shift.
Is this security vulnerability known?
I only discovered it by chance, because when I inserted the card, a text lit up saying "or hold it in front of it." I'd never done that before, so I pulled the card back to try it out. A new payment transaction was initiated.
(1 rating, 1 votes, rated)You need to be a registered member to rate this.
Loading...
This is not a vulnerability but inattentiveness and lack of care of the cashier.
The human factor is always susceptible to errors.
I'm an IT person. The system is faulty. It has falsified a payment process, apparently without notice. I couldn't see the display of the cashier, I missed the 200€ received on the cashier.
Correction: During the second payment transaction, the €200 was also missing from the display, which made me stop and take a closer look at the receipt.
If the €200 isn't on the receipt, it won't appear in the cash register either. The cashier wasn't paying attention. At our supermarket, in addition to the receipt for the withdrawal, there's always an extra receipt that you have to sign as confirmation of receipt.
Then everything is clear: the cashier made a mistake.