home.social

#applepay — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #applepay, aggregated by home.social.

  1. My growing retired-transit-card collection

    A year ago, this week’s work trip to the Bay Area would have meant breaking out the oldest computer that I was still using with any regularity at the time: the Clipper card that I bought in June of 2012 to pay for fares on BART, Muni and other transit agencies around San Francisco.

    But this year, I could leave that NFC-enabled smart card in the little holder in which I store my other stored-value transit cards and instead tap my phone to pay with my business credit card for each ride–first a SamTrans bus from SFO to Millbrae, then Caltrain to San Jose for TechEx North America, then two days of commuting up and down the peninsula for Google I/O.

    BART started accepting contactless payments last August, and now all the Bay Area transit services that accept Clipper cards also let you tap to pay with a phone, a smartwatch or a credit or debit card with an NFC chip.

    Whether you call it “tap to pay,” “open payments” or “open loop,” letting people pay for a fare as if it were any other on-the-go purchase is a great advance for transit. Especially for out-of-towners, as I realized years ago when visiting Chicago and Portland and appreciating the early lead of their transit services in this key bit of CX.

    A growing array of agencies across the U.S. have finally wised up to this after years of requiring people to buy proprietary stored-value cards, install agency-specific apps or make a throwback cash payment: Metro, NYC’s MTA, the T in Boston, NJ Transit buses and light rail, SEPTA around Philadelphia, MARTA in Atlanta, and the Seattle region’s Sound Transit, among many others.

    L.A.’s Metro has been a high-profile laggard–a personally inconvenient one since my TAP card expired last year. But this week users have begun reporting success on Reddit and in Bluesky posts with using their phones and credit cards to cover train and bus fares now that Metro there seems to have begun a soft launch of what it calls “TAP Plus.”

    As I’ve spent down the balance on transit cards I no longer need, the ones that I still need to use are now most entirely confined to agencies in other countries. Some examples: I love Barcelona’s Metro but I don’t love how it doesn’t support tap to pay; Doha’s driverless metro is a technological marvel but also requires its own colorful card; Vancouver’s Compass Card offers enough of a discount over tap-to-pay rates (because that city didn’t follow Toronto’s fare-neutral example) that I picked up one for last year’s Web Summit conference there and used it again for this year’s event.

    But there is one awkward exception right in my neighborhood: Arlington Transit, which continues to require the SmarTrip card that WMATA rolled out in 1999. So while I can pay for Metro like it’s the 21st century, I still have to keep my well-worn SmarTrip card handy in case an ART bus rolls up before a Metro bus does.

    #ApplePay #ArlingtonTransit #ARTBus #BART #Caltrain #CharlieCard #ClipperCard #GoogleWallet #MBTA #Metro #NFCPayments #openLoop #openPayments #SmarTrip #tapToPay #TheT #transit #transitApps #transitCards
  2. My growing retired-transit-card collection

    A year ago, this week’s work trip to the Bay Area would have meant breaking out the oldest computer that I was still using with any regularity at the time: the Clipper card that I bought in June of 2012 to pay for fares on BART, Muni and other transit agencies around San Francisco.

    But this year, I could leave that NFC-enabled smart card in the little holder in which I store my other stored-value transit cards and instead tap my phone to pay with my business credit card for each ride–first a SamTrans bus from SFO to Millbrae, then Caltrain to San Jose for TechEx North America, then two days of commuting up and down the peninsula for Google I/O.

    BART started accepting contactless payments last August, and now all the Bay Area transit services that accept Clipper cards also let you tap to pay with a phone, a smartwatch or a credit or debit card with an NFC chip.

    Whether you call it “tap to pay,” “open payments” or “open loop,” letting people pay for a fare as if it were any other on-the-go purchase is a great advance for transit. Especially for out-of-towners, as I realized years ago when visiting Chicago and Portland and appreciating the early lead of their transit services in this key bit of CX.

    A growing array of agencies across the U.S. have finally wised up to this after years of requiring people to buy proprietary stored-value cards, install agency-specific apps or make a throwback cash payment: Metro, NYC’s MTA, the T in Boston, NJ Transit buses and light rail, SEPTA around Philadelphia, MARTA in Atlanta, and the Seattle region’s Sound Transit, among many others.

    L.A.’s Metro has been a high-profile laggard–a personally inconvenient one since my TAP card expired last year. But this week users have begun reporting success on Reddit and in Bluesky posts with using their phones and credit cards to cover train and bus fares now that Metro there seems to have begun a soft launch of what it calls “TAP Plus.”

    As I’ve spent down the balance on transit cards I no longer need, the ones that I still need to use are now most entirely confined to agencies in other countries. Some examples: I love Barcelona’s Metro but I don’t love how it doesn’t support tap to pay; Doha’s driverless metro is a technological marvel but also requires its own colorful card; Vancouver’s Compass Card offers enough of a discount over tap-to-pay rates (because that city didn’t follow Toronto’s fare-neutral example) that I picked up one for last year’s Web Summit conference there and used it again for this year’s event.

    But there is one awkward exception right in my neighborhood: Arlington Transit, which continues to require the SmarTrip card that WMATA rolled out in 1999. So while I can pay for Metro like it’s the 21st century, I still have to keep my well-worn SmarTrip card handy in case an ART bus rolls up before a Metro bus does.

    #ApplePay #ArlingtonTransit #ARTBus #BART #Caltrain #CharlieCard #ClipperCard #GoogleWallet #MBTA #Metro #NFCPayments #openLoop #openPayments #SmarTrip #tapToPay #TheT #transit #transitApps #transitCards
  3. My growing retired-transit-card collection

    A year ago, this week’s work trip to the Bay Area would have meant breaking out the oldest computer that I was still using with any regularity at the time: the Clipper card that I bought in June of 2012 to pay for fares on BART, Muni and other transit agencies around San Francisco.

    But this year, I could leave that NFC-enabled smart card in the little holder in which I store my other stored-value transit cards and instead tap my phone to pay with my business credit card for each ride–first a SamTrans bus from SFO to Millbrae, then Caltrain to San Jose for TechEx North America, then two days of commuting up and down the peninsula for Google I/O.

    BART started accepting contactless payments last August, and now all the Bay Area transit services that accept Clipper cards also let you tap to pay with a phone, a smartwatch or a credit or debit card with an NFC chip.

    Whether you call it “tap to pay,” “open payments” or “open loop,” letting people pay for a fare as if it were any other on-the-go purchase is a great advance for transit. Especially for out-of-towners, as I realized years ago when visiting Chicago and Portland and appreciating the early lead of their transit services in this key bit of CX.

    A growing array of agencies across the U.S. have finally wised up to this after years of requiring people to buy proprietary stored-value cards, install agency-specific apps or make a throwback cash payment: Metro, NYC’s MTA, the T in Boston, NJ Transit buses and light rail, SEPTA around Philadelphia, MARTA in Atlanta, and the Seattle region’s Sound Transit, among many others.

    L.A.’s Metro has been a high-profile laggard–a personally inconvenient one since my TAP card expired last year. But this week users have begun reporting success on Reddit and in Bluesky posts with using their phones and credit cards to cover train and bus fares now that Metro there seems to have begun a soft launch of what it calls “TAP Plus.”

    As I’ve spent down the balance on transit cards I no longer need, the ones that I still need to use are now most entirely confined to agencies in other countries. Some examples: I love Barcelona’s Metro but I don’t love how it doesn’t support tap to pay; Doha’s driverless metro is a technological marvel but also requires its own colorful card; Vancouver’s Compass Card offers enough of a discount over tap-to-pay rates (because that city didn’t follow Toronto’s fare-neutral example) that I picked up one for last year’s Web Summit conference there and used it again for this year’s event.

    But there is one awkward exception right in my neighborhood: Arlington Transit, which continues to require the SmarTrip card that WMATA rolled out in 1999. So while I can pay for Metro like it’s the 21st century, I still have to keep my well-worn SmarTrip card handy in case an ART bus rolls up before a Metro bus does.

    #ApplePay #ArlingtonTransit #ARTBus #BART #Caltrain #CharlieCard #ClipperCard #GoogleWallet #MBTA #Metro #NFCPayments #openLoop #openPayments #SmarTrip #tapToPay #TheT #transit #transitApps #transitCards
  4. My growing retired-transit-card collection

    A year ago, this week’s work trip to the Bay Area would have meant breaking out the oldest computer that I was still using with any regularity at the time: the Clipper card that I bought in June of 2012 to pay for fares on BART, Muni and other transit agencies around San Francisco.

    But this year, I could leave that NFC-enabled smart card in the little holder in which I store my other stored-value transit cards and instead tap my phone to pay with my business credit card for each ride–first a SamTrans bus from SFO to Millbrae, then Caltrain to San Jose for TechEx North America, then two days of commuting up and down the peninsula for Google I/O.

    BART started accepting contactless payments last August, and now all the Bay Area transit services that accept Clipper cards also let you tap to pay with a phone, a smartwatch or a credit or debit card with an NFC chip.

    Whether you call it “tap to pay,” “open payments” or “open loop,” letting people pay for a fare as if it were any other on-the-go purchase is a great advance for transit. Especially for out-of-towners, as I realized years ago when visiting Chicago and Portland and appreciating the early lead of their transit services in this key bit of CX.

    A growing array of agencies across the U.S. have finally wised up to this after years of requiring people to buy proprietary stored-value cards, install agency-specific apps or make a throwback cash payment: Metro, NYC’s MTA, the T in Boston, NJ Transit buses and light rail, SEPTA around Philadelphia, MARTA in Atlanta, and the Seattle region’s Sound Transit, among many others.

    L.A.’s Metro has been a high-profile laggard–a personally inconvenient one since my TAP card expired last year. But this week users have begun reporting success on Reddit and in Bluesky posts with using their phones and credit cards to cover train and bus fares now that Metro there seems to have begun a soft launch of what it calls “TAP Plus.”

    As I’ve spent down the balance on transit cards I no longer need, the ones that I still need to use are now most entirely confined to agencies in other countries. Some examples: I love Barcelona’s Metro but I don’t love how it doesn’t support tap to pay; Doha’s driverless metro is a technological marvel but also requires its own colorful card; Vancouver’s Compass Card offers enough of a discount over tap-to-pay rates (because that city didn’t follow Toronto’s fare-neutral example) that I picked up one for last year’s Web Summit conference there and used it again for this year’s event.

    But there is one awkward exception right in my neighborhood: Arlington Transit, which continues to require the SmarTrip card that WMATA rolled out in 1999. So while I can pay for Metro like it’s the 21st century, I still have to keep my well-worn SmarTrip card handy in case an ART bus rolls up before a Metro bus does.

    #ApplePay #ArlingtonTransit #ARTBus #BART #Caltrain #CharlieCard #ClipperCard #GoogleWallet #MBTA #Metro #NFCPayments #openLoop #openPayments #SmarTrip #tapToPay #TheT #transit #transitApps #transitCards
  5. walt.is - The private (EU) alternative to Google and Apple Pay.
    "Beta testing starts mid-2026."

    Looks promising.

    via vger.to/programming.dev/post/4
    #MobilePayment #GooglePay #ApplePay

  6. walt.is - The private (EU) alternative to Google and Apple Pay.
    "Beta testing starts mid-2026."

    Looks promising.

    via vger.to/programming.dev/post/4
    #MobilePayment #GooglePay #ApplePay

  7. walt.is - The private (EU) alternative to Google and Apple Pay.
    "Beta testing starts mid-2026."

    Looks promising.

    via vger.to/programming.dev/post/4
    #MobilePayment #GooglePay #ApplePay

  8. Apple Plans to Let Users Build Their Own Passes in iOS 27 Wallet App

    (Bloomberg) — Apple Inc. is preparing a new “Create a Pass” feature for its next major iPhone software…
    #NewsBeep #News #US #USA #UnitedStates #UnitedStatesOfAmerica #Mobile #AppleInc #ApplePay #Bloomberg #creditcards #GoogleWallet #Technology #theWallet
    newsbeep.com/us/624303/

  9. Apple Plans to Let Users Build Their Own Passes in iOS 27 Wallet App

    (Bloomberg) — Apple Inc. is preparing a new “Create a Pass” feature for its next major iPhone software…
    #NewsBeep #News #US #USA #UnitedStates #UnitedStatesOfAmerica #Mobile #AppleInc #ApplePay #Bloomberg #creditcards #GoogleWallet #Technology #theWallet
    newsbeep.com/us/624303/

  10. Hyundai Card has a new Apple Pay Rewards credit card: 10% cashback when using Apple Pay in Korea BUT capped at 5k-10k won. Nice idea but doesn't seem worth it in practice. Via: blog.naver.com/card-gorilla/22 #ApplePay #애플페이 #HyundaiCard #현대카드 #카드고릴라

  11. Hyundai Card has a new Apple Pay Rewards credit card: 10% cashback when using Apple Pay in Korea BUT capped at 5k-10k won. Nice idea but doesn't seem worth it in practice. Via: blog.naver.com/card-gorilla/22 #ApplePay #애플페이 #HyundaiCard #현대카드 #카드고릴라

  12. Hyundai Card has a new Apple Pay Rewards credit card: 10% cashback when using Apple Pay in Korea BUT capped at 5k-10k won. Nice idea but doesn't seem worth it in practice. Via: blog.naver.com/card-gorilla/22 #ApplePay #애플페이 #HyundaiCard #현대카드 #카드고릴라

  13. Apple Pay for Transit Now Works in These 12 U.S. Cities

    Several major U.S. cities support the Apple Pay for transit feature that Apple has rolled out, providing a…
    #NewsBeep #News #Mobile #ApplePay #AppleWallet #ExpressTransit #Technology #UK #UnitedKingdom
    newsbeep.com/uk/556032/

  14. Apple Pay for Transit Now Works in These 12 U.S. Cities

    Several major U.S. cities support the Apple Pay for transit feature that Apple has rolled out, providing a…
    #NewsBeep #News #US #USA #UnitedStates #UnitedStatesOfAmerica #Mobile #ApplePay #AppleWallet #ExpressTransit #Technology
    newsbeep.com/us/612289/

  15. Apple brings tap to pay on iPhone to Malaysia, letting merchants accept contactless payments without extra hardware

    KUALA LUMPUR, April 22 — Apple has launched its Tap to Pay on iPhone feature in Malaysia, allowing…
    #NewsBeep #News #Mobile #ApplePay #AU #Australia #iPhoneMalaysia #KualaLumpur #Near-FieldCommunication #Paymentplatforms #taptopay #Technology
    newsbeep.com/au/622988/

  16. Apple brings tap to pay on iPhone to Malaysia, letting merchants accept contactless payments without extra hardware

    KUALA LUMPUR, April 22 — Apple has launched its Tap to Pay on iPhone feature in Malaysia, allowing…
    #NewsBeep #News #Mobile #ApplePay #AU #Australia #iPhoneMalaysia #KualaLumpur #Near-FieldCommunication #Paymentplatforms #taptopay #Technology
    newsbeep.com/au/622988/

  17. #Apple ‘s Tap to Pay is finally in Malaysia! Would prolly need some time to see real use cases, but damn I hope this allows extending #NFC/#ApplePay payments further even to ur local stalls n bazaars etc. since you don’t need a contactless card terminal but rather, an #iPhone 11 or newer (and a supporting app), dats it.

    🔗 https://www.lowyat.net/2026/390495/apple-brings-tap-to-pay-on-iphone-to-malaysia

  18. Vulnerabilidad crítica: Demuestran cómo robar 10.000 dólares de un iPhone bloqueado

    Investigadores de seguridad han recreado un ataque que permite extraer grandes sumas de dinero de un iPhone bloqueado, explotando un fallo en el sistema de pagos de Visa cuando está configurado el «Modo Transporte».

    La seguridad de Apple Pay se ha visto cuestionada tras una demostración técnica que ha dejado atónitos a expertos y usuarios por igual. Utilizando como «víctima» al conocido youtuber tecnológico Marques Brownlee (MKBHD), un equipo de investigadores logró realizar una transacción de 10.000 dólares desde su iPhone sin que este fuera desbloqueado mediante Face ID, Touch ID o código. El ataque aprovecha una vulnerabilidad específica que ocurre cuando una tarjeta Visa está configurada en el Modo Transporte (Express Transit), una función diseñada para que los usuarios puedan pagar el metro o el autobús simplemente acercando el móvil al lector, sin necesidad de autenticarse.

    https://www.youtube.com/watch?v=PPJ6NJkmDAo

    El proceso utiliza una técnica de «Man-in-the-Middle» (hombre en el medio) mediante hardware especializado que intercepta y manipula la comunicación NFC. Los atacantes engañan al iPhone haciéndole creer que está frente a un torno de transporte público (donde no se requiere autenticación), mientras que simultáneamente engañan al terminal de pago real haciéndole creer que el usuario ya ha autorizado la transacción de alto valor. Al alterar un bit específico en el protocolo de comunicación, el sistema no detecta que se está intentando realizar un pago de miles de dólares en lugar de un simple billete de tren.

    Aunque el experimento es real y exitoso, los expertos en ciberseguridad aclaran que el escenario para un robo así en la vida cotidiana es extremadamente complejo, ya que requiere contacto físico prolongado y equipos voluminosos cerca de la víctima. No obstante, el fallo persiste desde hace años sin una solución definitiva por parte de Visa o Apple. Como medida de precaución, se recomienda a los usuarios de iPhone desactivar el «Modo Transporte» para tarjetas Visa o utilizar Mastercard, que no parece verse afectada por este método específico de manipulación de protocolos.

    #APPLE #ApplePay #arielmcorg #ciberseguridad #hackeo #infosertec #iPhone #MKBHD #PORTADA #SeguridadDigital #tecnología #visa #wallet
  19. Vulnerabilidad crítica: Demuestran cómo robar 10.000 dólares de un iPhone bloqueado

    Investigadores de seguridad han recreado un ataque que permite extraer grandes sumas de dinero de un iPhone bloqueado, explotando un fallo en el sistema de pagos de Visa cuando está configurado el «Modo Transporte».

    La seguridad de Apple Pay se ha visto cuestionada tras una demostración técnica que ha dejado atónitos a expertos y usuarios por igual. Utilizando como «víctima» al conocido youtuber tecnológico Marques Brownlee (MKBHD), un equipo de investigadores logró realizar una transacción de 10.000 dólares desde su iPhone sin que este fuera desbloqueado mediante Face ID, Touch ID o código. El ataque aprovecha una vulnerabilidad específica que ocurre cuando una tarjeta Visa está configurada en el Modo Transporte (Express Transit), una función diseñada para que los usuarios puedan pagar el metro o el autobús simplemente acercando el móvil al lector, sin necesidad de autenticarse.

    https://www.youtube.com/watch?v=PPJ6NJkmDAo

    El proceso utiliza una técnica de «Man-in-the-Middle» (hombre en el medio) mediante hardware especializado que intercepta y manipula la comunicación NFC. Los atacantes engañan al iPhone haciéndole creer que está frente a un torno de transporte público (donde no se requiere autenticación), mientras que simultáneamente engañan al terminal de pago real haciéndole creer que el usuario ya ha autorizado la transacción de alto valor. Al alterar un bit específico en el protocolo de comunicación, el sistema no detecta que se está intentando realizar un pago de miles de dólares en lugar de un simple billete de tren.

    Aunque el experimento es real y exitoso, los expertos en ciberseguridad aclaran que el escenario para un robo así en la vida cotidiana es extremadamente complejo, ya que requiere contacto físico prolongado y equipos voluminosos cerca de la víctima. No obstante, el fallo persiste desde hace años sin una solución definitiva por parte de Visa o Apple. Como medida de precaución, se recomienda a los usuarios de iPhone desactivar el «Modo Transporte» para tarjetas Visa o utilizar Mastercard, que no parece verse afectada por este método específico de manipulación de protocolos.

    #APPLE #ApplePay #arielmcorg #ciberseguridad #hackeo #infosertec #iPhone #MKBHD #PORTADA #SeguridadDigital #tecnología #visa #wallet
  20. Vulnerabilidad crítica: Demuestran cómo robar 10.000 dólares de un iPhone bloqueado

    Investigadores de seguridad han recreado un ataque que permite extraer grandes sumas de dinero de un iPhone bloqueado, explotando un fallo en el sistema de pagos de Visa cuando está configurado el «Modo Transporte».

    La seguridad de Apple Pay se ha visto cuestionada tras una demostración técnica que ha dejado atónitos a expertos y usuarios por igual. Utilizando como «víctima» al conocido youtuber tecnológico Marques Brownlee (MKBHD), un equipo de investigadores logró realizar una transacción de 10.000 dólares desde su iPhone sin que este fuera desbloqueado mediante Face ID, Touch ID o código. El ataque aprovecha una vulnerabilidad específica que ocurre cuando una tarjeta Visa está configurada en el Modo Transporte (Express Transit), una función diseñada para que los usuarios puedan pagar el metro o el autobús simplemente acercando el móvil al lector, sin necesidad de autenticarse.

    https://www.youtube.com/watch?v=PPJ6NJkmDAo

    El proceso utiliza una técnica de «Man-in-the-Middle» (hombre en el medio) mediante hardware especializado que intercepta y manipula la comunicación NFC. Los atacantes engañan al iPhone haciéndole creer que está frente a un torno de transporte público (donde no se requiere autenticación), mientras que simultáneamente engañan al terminal de pago real haciéndole creer que el usuario ya ha autorizado la transacción de alto valor. Al alterar un bit específico en el protocolo de comunicación, el sistema no detecta que se está intentando realizar un pago de miles de dólares en lugar de un simple billete de tren.

    Aunque el experimento es real y exitoso, los expertos en ciberseguridad aclaran que el escenario para un robo así en la vida cotidiana es extremadamente complejo, ya que requiere contacto físico prolongado y equipos voluminosos cerca de la víctima. No obstante, el fallo persiste desde hace años sin una solución definitiva por parte de Visa o Apple. Como medida de precaución, se recomienda a los usuarios de iPhone desactivar el «Modo Transporte» para tarjetas Visa o utilizar Mastercard, que no parece verse afectada por este método específico de manipulación de protocolos.

    #APPLE #ApplePay #arielmcorg #ciberseguridad #hackeo #infosertec #iPhone #MKBHD #PORTADA #SeguridadDigital #tecnología #visa #wallet
  21. Vulnerabilidad crítica: Demuestran cómo robar 10.000 dólares de un iPhone bloqueado

    Investigadores de seguridad han recreado un ataque que permite extraer grandes sumas de dinero de un iPhone bloqueado, explotando un fallo en el sistema de pagos de Visa cuando está configurado el «Modo Transporte».

    La seguridad de Apple Pay se ha visto cuestionada tras una demostración técnica que ha dejado atónitos a expertos y usuarios por igual. Utilizando como «víctima» al conocido youtuber tecnológico Marques Brownlee (MKBHD), un equipo de investigadores logró realizar una transacción de 10.000 dólares desde su iPhone sin que este fuera desbloqueado mediante Face ID, Touch ID o código. El ataque aprovecha una vulnerabilidad específica que ocurre cuando una tarjeta Visa está configurada en el Modo Transporte (Express Transit), una función diseñada para que los usuarios puedan pagar el metro o el autobús simplemente acercando el móvil al lector, sin necesidad de autenticarse.

    https://www.youtube.com/watch?v=PPJ6NJkmDAo

    El proceso utiliza una técnica de «Man-in-the-Middle» (hombre en el medio) mediante hardware especializado que intercepta y manipula la comunicación NFC. Los atacantes engañan al iPhone haciéndole creer que está frente a un torno de transporte público (donde no se requiere autenticación), mientras que simultáneamente engañan al terminal de pago real haciéndole creer que el usuario ya ha autorizado la transacción de alto valor. Al alterar un bit específico en el protocolo de comunicación, el sistema no detecta que se está intentando realizar un pago de miles de dólares en lugar de un simple billete de tren.

    Aunque el experimento es real y exitoso, los expertos en ciberseguridad aclaran que el escenario para un robo así en la vida cotidiana es extremadamente complejo, ya que requiere contacto físico prolongado y equipos voluminosos cerca de la víctima. No obstante, el fallo persiste desde hace años sin una solución definitiva por parte de Visa o Apple. Como medida de precaución, se recomienda a los usuarios de iPhone desactivar el «Modo Transporte» para tarjetas Visa o utilizar Mastercard, que no parece verse afectada por este método específico de manipulación de protocolos.

    #APPLE #ApplePay #arielmcorg #ciberseguridad #hackeo #infosertec #iPhone #MKBHD #PORTADA #SeguridadDigital #tecnología #visa #wallet
  22. Vulnerabilidad crítica: Demuestran cómo robar 10.000 dólares de un iPhone bloqueado

    Investigadores de seguridad han recreado un ataque que permite extraer grandes sumas de dinero de un iPhone bloqueado, explotando un fallo en el sistema de pagos de Visa cuando está configurado el «Modo Transporte».

    La seguridad de Apple Pay se ha visto cuestionada tras una demostración técnica que ha dejado atónitos a expertos y usuarios por igual. Utilizando como «víctima» al conocido youtuber tecnológico Marques Brownlee (MKBHD), un equipo de investigadores logró realizar una transacción de 10.000 dólares desde su iPhone sin que este fuera desbloqueado mediante Face ID, Touch ID o código. El ataque aprovecha una vulnerabilidad específica que ocurre cuando una tarjeta Visa está configurada en el Modo Transporte (Express Transit), una función diseñada para que los usuarios puedan pagar el metro o el autobús simplemente acercando el móvil al lector, sin necesidad de autenticarse.

    https://www.youtube.com/watch?v=PPJ6NJkmDAo

    El proceso utiliza una técnica de «Man-in-the-Middle» (hombre en el medio) mediante hardware especializado que intercepta y manipula la comunicación NFC. Los atacantes engañan al iPhone haciéndole creer que está frente a un torno de transporte público (donde no se requiere autenticación), mientras que simultáneamente engañan al terminal de pago real haciéndole creer que el usuario ya ha autorizado la transacción de alto valor. Al alterar un bit específico en el protocolo de comunicación, el sistema no detecta que se está intentando realizar un pago de miles de dólares en lugar de un simple billete de tren.

    Aunque el experimento es real y exitoso, los expertos en ciberseguridad aclaran que el escenario para un robo así en la vida cotidiana es extremadamente complejo, ya que requiere contacto físico prolongado y equipos voluminosos cerca de la víctima. No obstante, el fallo persiste desde hace años sin una solución definitiva por parte de Visa o Apple. Como medida de precaución, se recomienda a los usuarios de iPhone desactivar el «Modo Transporte» para tarjetas Visa o utilizar Mastercard, que no parece verse afectada por este método específico de manipulación de protocolos.

    #APPLE #ApplePay #arielmcorg #ciberseguridad #hackeo #infosertec #iPhone #MKBHD #PORTADA #SeguridadDigital #tecnología #visa #wallet
  23. Apple Pay Express Mode Visa Vulnerability

    news.expresstransit.com/apple-
    - - -
    Vulnérabilité du mode Express d’Apple Pay avec les cartes Visa

    // Publication en anglais //

    #Apple #ApplePay #Visa #iPhone