bloomberg on supermicro: sky is falling

Suresh Ramasubramanian ops.lists at gmail.com
Wed Oct 10 16:22:17 UTC 2018


This is common in India but then chip and pin has been mandatory for a good few years, as has 2fa (vbv / mastercard secure code) for online transactions.

Waiters would earlier ask for people's pins so they could go back and enter it - back when a lot of the POS terminals were connected to POTS lines rather than battery operated + with a GSM sim.  That's stopped now as people grew more aware.

On 10/10/18, 9:49 PM, "NANOG on behalf of Brian Kantor" <nanog-bounces at nanog.org on behalf of Brian at ampr.org> wrote:

    I understand that in some countries the common practice is that the
    waiter or clerk brings the card terminal to you or you go to it at the
    cashier's desk, and you insert or swipe it, so the card never leaves
    your hand.  And you have to enter the PIN as well.  This seems
    notably more secure against point-of-sale compromise.
    	- Brian
    
    On Wed, Oct 10, 2018 at 04:01:07PM +0000, Naslund, Steve wrote:
    > Sure and with the Exp Date, CVV, and number printed on every card you are open to compromise every time you stay in the hotel or go to a restaurant where you hand someone your card.  Worse yet, the only option if you are compromised is to change all your numbers and put the burden on your of notifying everyone and that evening you hand your card to the waiter and the cycle starts over.  The system is so monumentally stupid it’s unbelievable.
    > 
    >   Steven Naslund
    > 
    >  Chicago IL
    





More information about the NANOG mailing list