iPhone Users Warned To Remove Visa Cards From Wallets And Apple Pay

A glitch could see fraudsters use the card to help themselves to your savings.

Kimberley Bond

Published Sep 30, 2021, 08:49:21 GMT+1Last updated Sep 30, 2021, 08:52:53 GMT+1

Experts are urging iPhone users to remove any Visa cards from their Wallet app or Apple Pay, as a glitch could lead to criminals making unlimited contactless payments.

Researchers at the University of Birmingham and the University of Surrey have warned the new Express Transit mode could now be exploited by fraudsters to make payments from an iPhone inside someone’s bag.

The Express Transit mode is a feature implemented by Apple to allow users to tap in and out of transport systems without needing to unlock their device.

Researchers have found a flaw in the Express Transit mode (

Shutterstock)

Researchers were able to ‘trick’ an iPhone into believing it was communicating with a transit gate, when it was actually using a common card payment reader used by shops, simply by using inexpensive radio equipment.

Advert

Fraud detection checks were also unable from stopping the payments from going through.

The weakness is not thought to affect other digital card combinations, such as Mastercard in iPhones or Visa on Samsung Pay.

The Visa/Apple combination is thought to be most insecure (

Shutterstock)

Dr Tom Chothia, co-author of the study, from the University of Birmingham, said of the research: “iPhone owners should check if they have a Visa card set up for transit payments and if so they should disable it.

Advert

“There is no need for Apple Pay users to be in danger, but until Apple or Visa fix this they are.”

Researchers claimed to have shared their findings with both Apple and Visa, but both are currently in disagreement over who should fix the issue.

A spokeswoman for Visa told the Independent: “Variations of contactless fraud schemes have been studied in laboratory settings for more than a decade and have proven to be impractical to execute at scale in the real world.

“Visa takes all security threats very seriously, and we work tirelessly to strengthen payment security across the ecosystem.”

Visa and Apple have both said the combination is safe to use (

Shutterstock)

Meanwhile, an Apple spokesperson said: “We take any threat to users’ security very seriously. This is a concern with a Visa system but Visa does not believe this kind of fraud is likely to take place in the real world given the multiple layers of security in place.

Advert

“In the unlikely event that an unauthorised payment does occur, Visa has made it clear that their cardholders are protected by Visa’s zero liability policy.”

Full results of the study will be presented in a paper at the 2022 IEEE Symposium on Security and Privacy.

Featured Image Credit: Shutterstock

Topics: Money, News, Technology

Kim is a journalist at Tyla, and has previously worked at the Evening Standard, Radio Times as well as several national newspapers. A showbiz obsessive and a television fanatic, Kim is particularly interested in celebrity gossip, A-list events and the latest releases on either the big or small screen. Contact her at [email protected]

@0xKimberley

iPhone Users Warned To Remove Visa Cards From Wallets And Apple Pay

A glitch could see fraudsters use the card to help themselves to your savings.

Choose your content:

Choose your content:

Two bodies found in search for missing mums who went to pick up children but never made it

Veronica Butler and Jillian Kelley were declared missing persons on 30 March.

Girl, 12, rushed to hospital after inhaling five cans of deodorant in dangerous ‘chroming’ attempt

She did it 'for a laugh'

Sydney mall attacker ‘focused on targeting women’, police say after new details emerge

Joel Cauchi appeared to target women in his brutal attack

Woman claims she could’ve died after buying £120 ‘skinny jab’ from Instagram

The 'skinny jab' left her severely ill and could have been fatal