There is a debate about who is to blame for the recent security breaches on Apple Inc. (NASDAQ:AAPL)’s Apple Pay system. Banks have been hit with Apple Pay fraud whereby criminals impersonate users and trick them to approve additional cards. According to experts, both Apple and the banks share the blame for Apple Pay fraud cases.

Apple Pay is supported by the major U.S. banks and other financial institutions. Bank of America Corp. (NYSE:BAC) disclosed having about 1.1 million Apple Pay users at the end of 2014. JPMorgan Chase & Co. (NYSE:JPM) said it had already registered 1 million cards with Apple Pay.

Criminals impersonate users

There have been no illegal breaking into the encrypted system of Apple Pay, but criminals are finding a way to fool banks to verify cards by impersonating genuine users. The reason such is happening is that some of the details that banks ask for to approve a new card are easily available on the black market.

The major weakness on the side of Apple Inc. (NASDAQ:AAPL) and the banks is their desire to make the registration process for the payment service simpler. While that is helping them to increase Apple Pay adoption, they are risking the security of the service.

Fault of the banks

Banks are competing to register more Apple Pay customers. As such, they are aiming to make Apple Pay card registration as painless is it can be. For example, the banks do not usually ask for additional information from users after they receive the encrypted card details from Apple. In the end, the simplified card registration process is creating loopholes for criminals to attack.

Apple’s fault

Apple Inc. (NASDAQ:AAPL) is operating from a consumer mindset that making Apple Pay card registration complex would put off many users, especially senior citizens. However, Apple needs to do more about security as it does about usability.

Apple has the opportunity to compel banks to up their Apple Pay security game, which it hasn’t done. It seems Apple prefers to trade security for usability, which can be costly on a bad day. In the embarrassing breach of iCloud system where various celebrities were impacted, experts say Apple could have easily prevented such attacks. Use of two-factor authentication would have done it and make iCloud more secure.

2 COMMENTS

  1. This article is utter nonsense.

    One more FUDS attack to manipulate the stock market.

    It doesn’t even make sense.

    If the banks were to be conned by third parties, that would be completely the fault of the banks.

    The simplicity of adding cards for the real user has no bearing on the banks bypassing that system and leaving the banks open to fraud.

    “According to experts….” without naming the experts generally means the same as “We just made this up …”

    Pretty disgusting journalism

  2. I wish you hadn’t blamed Apple for the problem.. now all the iSheep will stampede.. takes forever to calm them down /s

LEAVE A REPLY

Please enter your comment!
Please enter your name here

What is 4 + 7 ?
Please leave these two fields as-is:
IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)