Chip-And-Sign Credit Cards Are A Security Risk, Warns FBI

Toggle sidebar Toggle sidebar
Status
Not open for further replies.
if they are such a security risk why has the rest of the 1st world been using these chipped cards for almost a century now? its funny how the US is considered to be the most powerful country in the world (or was) and they are so so far behind in technology
 
The US is practactly last because the banks don't want to spend the money on new cards. But, if the bank could have passed the cost of the "new" chip card to the customer they would have done it years ago.

I can see those criminals now....oops I meant Executives. Want a new chip card? Sure that will be $9.99 + Shipping and handling + processing fee and administration fee for converting your old card.
 
I was under the impression banks weren't upgrading cards in the U.S. because of how profitable selling fraud protection is. All the banks sell additional services like more advanced account monitoring to people and it has been an invaluable service up until now because of how easy it was for accounts to be compromised. Now with chip and pin the threat will reduce quite a lot and so will the number of people opting in for a monthly charge for additional security features.
 


They said chip and sign is bad, but chip and pin is good, but chip and fingerprint may be better.
 
The article is wrong about chip and sign liability. Merchants are protected as long as they have a chip based terminal and use the chip to process a transaction.
 
if they are such a security risk why has the rest of the 1st world been using these chipped cards for almost a century now? its funny how the US is considered to be the most powerful country in the world (or was) and they are so so far behind in technology
Click to expand...

Back in the 70's (certainly not a century ago as someone already correct you on, or was that hyperbole?), the raised numbers on the card actually served a purpose, you ran it through a manual sliding machine that imprinted the card number onto carbon copy paper, then signed it. Fast forward to 2015, new cards today don't have the card number on the front or even raised. Cards will go all digital, everyone has a phone now and that is the future, we won't be carrying plastic around with chips, and because that idea was made popular in the US first, and then exported to other countries, the US is leading that charge (no pun intended, shehehe).
 
if they are such a security risk why has the rest of the 1st world been using these chipped cards for almost a century now?
Click to expand...

<whew> I'm going to assume you meant "since shortly after the turn of the century". And as already noted, there's a big, big difference between chip without and chip with PIN. Once again the American banks are going for the cheap, crappy solution.
 
if they are such a security risk why has the rest of the 1st world been using these chipped cards for almost a century now? its funny how the US is considered to be the most powerful country in the world (or was) and they are so so far behind in technology
Click to expand...
I don't see England sending people to the moon so that comment is invalid.
 
The article is wrong about chip and sign liability. Merchants are protected as long as they have a chip based terminal and use the chip to process a transaction.
Click to expand...


Someone should tell this so BJs whole sale and Whole Foods. They have the chip terminals but they are not activated. So someone like me goes to pay and sticks the card in wondering why its not working then be told I have to swipe it. When I went to Target who uses the same terminal I sipped and it rejected my card because it detected the chip so I had to insert it and sign. That is how it should be. Target has it right!!!
 
I can see those criminals now....oops I meant Executives. Want a new chip card? Sure that will be $9.99 + Shipping and handling + processing fee and administration fee for converting your old card.
Click to expand...

Bank of America and Chase both sent me new chip cards months ago. Both the chip and the magnetic strip work, so it doesn't matter what the merchant accepts.

When I went to Target who uses the same terminal I sipped and it rejected my card because it detected the chip so I had to insert it and sign. That is how it should be. Target has it right!!!
Click to expand...

Target jumped on board so quickly was because they were burned recently due to the negligence of a company they contracted with. Target has had to shoulder a lot of that blame so naturally they are doing everything they can to improve their reputation.

Also, this is exactly how the credit card machines work at my company. If the salesperson doesn't notice the chip and swipes it, the machine halts you and insists that you insert the chip. However... if a chip has failed, most of these units let you swipe the card after repeated failed attempts. Similar to manually entering card numbers in the case of a bad stripe.

I have only heard of one case of a faulty chip so far, and that was because the card was physically warped. Come on people, use a wallet for crying out loud.
 
To clarify, I mean they sent them to me free of charge. They're doing a gradual rollout, probably 1/3 to 1/2 of the cards we process are chip cards now. That number will continue to go up as they send out new cards to customers. Of course the FBI is recommending chip and pin and basically nobody uses that. Good luck with THAT. You're more likely to see a switch from chip and sign directly to NFC (mostly smartphone based) transactions.

Personally I hope they never eliminate cash.
 


They said chip and sign is bad, but chip and pin is good, but chip and fingerprint may be better.
Click to expand...

because that's what i want, my card stolen AND finger cut off.
 
@captaincharisma
the rest of the 1st world uses chip and pin...
we are switching to chip and sign...
the FBI is warning that we get our act together and use chip and pin because its way harder to crack.
 
if they are such a security risk why has the rest of the 1st world been using these chipped cards for almost a century now? its funny how the US is considered to be the most powerful country in the world (or was) and they are so so far behind in technology
Click to expand...
You REALLY need to learn to understand what you are reading better, don't let your anti-US bias make you look stupid.
 
Someone didn't bother to read the article. it's "chip and sign" that's a risk. Europe uses chip and PIN. the FBI is be-moaning the fact that we haven't gone to PIN instead of signature. No bank is charging for a chip card. I have all of my cards now, and have 5 cards with chip, and paid nothing. The banks were required to do that. We will have chip and PIN in a few years, when they've upgraded the readers.
 


That's correct the cars are free for us.
However merchants have to pay for new card readers, they start at abut 600 bucks.

I think the rule is if you don't get a new card reader and its your PoS machine that gets hacked your store has to pay for the damages.

 


You know written sarcasm rarely shows up very well, right?
 

The U.S. is last because the U.S. was first to get magnetic swipe card readers. The huge installed base of magnetic readers at U.S. merchants created a lot of inertia. Merchants were reluctant to pay for newer readers if only a few people had cards which could use them, banks were reluctant to issue new cards if merchants wouldn't buy the new readers.

Same thing happened with cell phone service. The U.S. was first to develop an analog cell phone network. But the time digital cell phones rolled around, the analog network was firmly entrenched in the U.S. Other countries without an analog network (like Korea) jumped straight to digital cell phones. The U.S. was last to make the switch. (This is also why for a long time you had to pay 10-15 cents per text message. Texting was free in other countries because nobody knew how insanely popular it would be. The U.S. carriers had a chance to see in other countries which features were most popular - texts and ringtones - and charged U.S. customers up the wazoo for these things that were free in other countries.)

Or if you want a non-U.S. example (kinda hard because the U.S. is first in a lot of technology), Japan was the acknowledged world leader in HDTV. They had their first HDTV broadcast in the 1960s. But their HDTV standard was analog. In the 1990s, digital signal processors became fast enough that you could decode a digital data stream into a HDTV-resolution 60 fps video in real-time. The U.S. quickly developed a digital HDTV broadcast standard which completely supplanted the Japanese one and became the standard used throughout the world today.

They said chip and sign is bad, but chip and pin is good, but chip and fingerprint may be better.
Click to expand...
Chip and fingerprint is terrible, worse than chip and sign. When you hand over your card to the waiter, it has your fingerprints on it. Apple as put a lot of marketing into getting people to believe fingerprints are the next big thing in security. They aren't - you leave copies of your fingerprint everywhere, and if your fingerprint is ever compromised you can't change it for a new one. Fingerprints are OK for convenience and casual security, like preventing anyone else from making calls on your phone. But anything protecting your money or private data needs stronger protection.

Chip and PIN is best because it combines something you have (the chip) with something you know (the PIN). As long as you can keep the PIN secret, the physical card is useless. The same isn't true for the other two - someone can lift your fingerprint, or get a copy of your signature. And if your PIN is ever revealed, you can just change it.

I was under the impression banks weren't upgrading cards in the U.S. because of how profitable selling fraud protection is.
Click to expand...
The banks pushed chip and sign instead of chip and PIN because the latter is pretty much bulletproof. If any fraud happens with chip and PIN, it's almost certainly the bank's fault. So they end up paying for any fraud. Chip and sign leaves enough wiggle room that they can blame the merchant, and force the merchant to pay for any fraud like they do now. "The signature you collected at the point of sale does not match the cardholder's signature. The fraud is your fault - you pay for it."

That's been the main reason credit card security hasn't improved these past 3 decades. The banks and credit card companies successfully shifted the cost of credit card fraud onto the merchants. No, those exorbitant interest rates don't pay for fraud. They pay for credit card holders who default on their debt. Fraud is paid for by the merchant, who passes the cost onto you and me in the form of higher prices. Since the banks controlled the credit card system but weren't bearing any of the costs for fraud, they had no incentive to implement better security.
 
if they are such a security risk why has the rest of the 1st world been using these chipped cards for almost a century now? its funny how the US is considered to be the most powerful country in the world (or was) and they are so so far behind in technology
Click to expand...
I don't see England sending people to the moon so that comment is invalid.
Click to expand...

Well, I think that part might be more due to finance than technology.
 
Status
Not open for further replies.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom