x PhoneArena is looking for new authors! To view all available positions, click here.
  • Home
  • News
  • Google Wallet vulnerable to attacks aimed to retrieve your PIN number

Google Wallet vulnerable to attacks aimed to retrieve your PIN number

Posted: , by Daniel P.

Tags:

Google Wallet vulnerable to attacks aimed to retrieve your PIN number
A simple "brute force" attack of Google Wallet's SHA256 hex-encoded string that contains your PIN number, can reveal it to hackers in just ten thousand combinations.

The security researchers that discovered the vulnerability proved how easy it is by writing the app Wallet Cracker, which extracted the PIN in no time. While digging through the open source code, they also found unique user IDs and the Google account information, rounding up the tools one would need to easily poach your associated card account.

Google has been made aware of the issue, and is working with the banks and security software providers involved to remedy this. In the meantime, the researchers suggest you abstain from rooting your handset, update your software regularly, enable the lock screen, and uncheck the "USB Debugging".

source: zvelo via Engadget


2 Comments
  • Options
    Close




posted on 09 Feb 2012, 09:01

1. Sniggly (Posts: 7183; Member since: 05 Dec 2009)


So...wait a minute. The hackers can only get to the point of running this program if your phone is rooted and has no unlock security enabled?

posted on 09 Feb 2012, 12:46 1

2. paulyyd (Posts: 327; Member since: 08 Jan 2011)


Lol oh google

Want to comment? Please login or register.

Latest stories