formoverfunction wrote:Saying that, I do have a blocking card in my wallet and a pouch for my cards and phone, I leave the tin foil hat at home most days.
That appears to be unnecessary:
https://nordvpn.com/blog/does-rfid-blocking-work/
Thanks to gvonge,Shelford,GrahamPlatt,gpadsa,Steffers0, for Donating to support the site
formoverfunction wrote:Saying that, I do have a blocking card in my wallet and a pouch for my cards and phone, I leave the tin foil hat at home most days.
Lootman wrote:Surely you would not lose anything since the bank/issuer has to refund you for any charges that are not yours.
XFool wrote:My credit card is Contactless. I couldn't get them to give me a replacement, so I have physically disabled the card's RFID by severing the aerial from the chip. It still works perfectly as a credit card using Chip & Pin.
GeoffF100 wrote:formoverfunction wrote:Saying that, I do have a blocking card in my wallet and a pouch for my cards and phone, I leave the tin foil hat at home most days.
That appears to be unnecessary:
https://nordvpn.com/blog/does-rfid-blocking-work/
mc2fool wrote:
"There are four key reasons why outright contactless attacks are unlikely:
:Does Amazon require a CVV for card transactions nowadays? 'Cos it famously didn't and still didn't last I registered a card with it.
- The scannable information on a card doesn’t include the sensitive data that thieves are actually looking for (the CVV code on the back of the card, for example)."
GeoffF100 wrote:formoverfunction wrote:Saying that, I do have a blocking card in my wallet and a pouch for my cards and phone, I leave the tin foil hat at home most days.
That appears to be unnecessary:
https://nordvpn.com/blog/does-rfid-blocking-work/
GeoffF100 wrote:XFool wrote:My credit card is Contactless. I couldn't get them to give me a replacement, so I have physically disabled the card's RFID by severing the aerial from the chip. It still works perfectly as a credit card using Chip & Pin.
You can disable contactless payments by punching a hole in the card.
GeoffF100 wrote:If it is a card that you never use for in person payments, that clearly that reduces risk. If you carry a card as a reserve that you are unlikely to use for several years at a time, that should reduce the risk too. If you do use the card regularly, however, disabling contactless payment entirely can increase your risk. Suppose that you have thousands of pounds credit on a card and use it to make a £10 payment. If someone shoulder surfs your PIN (or uses a hidden camera) and snatches you card, they can drain your account. If you still had the £100 contactless limit, they would not have the PIN, and would be unlikely to be able to drain more than a few hundred pounds, before the bank required a PIN.
y0rkiebar wrote:GeoffF100 wrote:My solution is to use a prepaid card with a small amount of money on it for most of my in person payments. I cannot reduce the contactless limit from £100, but at least my liability is limited if the card is lost or stolen.
Monzo is prepaid and allows you to set the contactless limit from £0 upwards (£0 will decline all contactless).
GeoffF100 wrote:mc2fool wrote:"There are four key reasons why outright contactless attacks are unlikely:
:Does Amazon require a CVV for card transactions nowadays? 'Cos it famously didn't and still didn't last I registered a card with it.
- The scannable information on a card doesn’t include the sensitive data that thieves are actually looking for (the CVV code on the back of the card, for example)."
"Why do some websites not require CVV?":
https://www.chase.com/personal/credit-c ... equire-cvv
If a merchant does not ask for the CVV and the payment turns out to be fraudulent, the merchant has to pick up the bill.
Here is a better article on RFID blockers:
https://www.digitaltrends.com/cool-tech ... an-expert/
That is clearer. RFID scanning should not put us at risk nowadays, and there are no recorded cases of it being used in the UK.
stevensfo wrote:First of all, you do not have to buy an expensive wallet. A piece of aluminium foil is just as good.
mc2fool wrote:Mind you, skimming someone's contactless card for details to use on Amazon (rather than stealing from the card directly) will probably be more difficult than just trying to take a photo of the back of the latest HSBC cards, which have ALL of the information -- name, card number, expiry date and CVV -- all on one side now.
GeoffF100 wrote:mc2fool wrote:Mind you, skimming someone's contactless card for details to use on Amazon (rather than stealing from the card directly) will probably be more difficult than just trying to take a photo of the back of the latest HSBC cards, which have ALL of the information -- name, card number, expiry date and CVV -- all on one side now.
That is standard now that the cards are no longer embossed. My Tesco card also has the account number and sort code on the back, albeit in tiny lettering. I expect that is standard too.
stevensfo wrote:Most smartphone bank apps will let you know when your card is being used. If they don't, then ask your bank why! It's all part of Due Diligence.
Some apps allow you to switch contactless on/off. This is now quite old tech, so there's no excuse.
XFool wrote:GeoffF100 wrote:That is standard now that the cards are no longer embossed. My Tesco card also has the account number and sort code on the back, albeit in tiny lettering. I expect that is standard too.
Well, the contactless Revolut card (along with the contactless Barclaycard) I found recently on the ground near my home had the owner's name on the front, no embossing, and the card number, expiry date and cvv2 number on the back, in large letters.
(Have reported it to them)
XFool wrote:GeoffF100 wrote:That is standard now that the cards are no longer embossed. My Tesco card also has the account number and sort code on the back, albeit in tiny lettering. I expect that is standard too.
Well, the contactless Revolut card (along with the contactless Barclaycard) I found recently on the ground near my home had the owner's name on the front, no embossing, and the card number, expiry date and cvv2 number on the back, in large letters.
(Have reported it to them)
GeoffF100 wrote:stevensfo wrote:Most smartphone bank apps will let you know when your card is being used. If they don't, then ask your bank why! It's all part of Due Diligence.
Some apps allow you to switch contactless on/off. This is now quite old tech, so there's no excuse.
I would not want to use a smartphone app for an account that potentially gives access to serious money. That is an unnecessary security risk.
I certainly would not use Google Pay, Apple Pay or Samsung Pay. That is inviting theft, or worse, a mugger with knife to your throat demanding access to my phone and banking app. I do not want the phone to announce its presence either, so I turn on "Do not disturb" whenever I reasonably can.
I have installed the app for my in person payment card. That does not give access to any more money than the card itself. I am only keeping small amounts of money on the card, so I need to have an easy way to monitor how much is left.
As I have said, turning contactless off completely has the downside that it increases the shoulder surfing risk.
1nvest wrote:I'm in the use it or lose is brigade. Draw out £200 often, alongside a debit card - for travel and for the odd money (£24.34 purchase, £20 note, £4.34 from card). I envisage otherwise a monopoly (end of cash) resulting in unavoidable additional costs (2%/whatever of transaction value in bank fees would be little different to a 2% increase in tax on spending). I dislike the trend towards leaving a legacy of where the state sees/records all - as then your work/effort to accumulate wealth is no longer yours, is just a state loan.
Haven't set a contactless limit, could and perhaps should set it to £20 as otherwise a dropped/stolen wallet could have £500 spent within minutes and before the loss was realised. I imagine banks have issues with some spending that sort of amount and then claiming their card was lost/stolen.
Additionally have a credit card - used rarely, has a high limit and is kept more for emergencies, paying for a private ambulance/medical treatment following a accident abroad/whatever. Also carry gold coins - as a get you through the gate and onto the last plane/ship bribe.
stevensfo wrote:Your phone should tell you each time your cards are used. If not, why not?
Return to “Bank Accounts Savings & ISAs”
Users browsing this forum: No registered users and 8 guests