Well that article was completely devoid of information. Here's the post by the r... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

kalleboo on Dec 28, 2015 | parent | context | favorite | on: Outdated payment protocols expose customers and me...

Well that article was completely devoid of information.

Here's the post by the researchers themselves: https://srlabs.de/pos-vulns/

tldr: POS card readers have poor security - their HSMs leak their keys, and many of them don't have unique keys so you can impersonate them

dang on Dec 28, 2015 | [–]

Ok, we changed the URL to that from https://www.rt.com/news/327161-credit-card-protocal-vulnerab....

nspassov on Dec 28, 2015 | [–]

The guys have also done a presentation on this in Hamburg a couple of days ago: https://events.ccc.de/congress/2015/Fahrplan/events/7368.htm...

Cannot find a recording yet

kuschku on Dec 28, 2015 | [–]

Recording is here: https://streaming.media.ccc.de/32c3/relive/7368/

But warning! This is pure stream dump, don’t expect high quality yet.

nspassov on Dec 28, 2015 | | [–]

Official recording is out now: https://media.ccc.de/v/32c3-7368-shopshifting#video

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact