Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
1 | ... | 539 | 540 | 541 | 542 | 543 | 544 | 545 | 546 | 547 | 548 | 549 | 550 | 551 | 552 | 553 | 554 | 555 | 556 | 557 | 558 | 559 | ... | 564
First time caller
207 posts

Master Geek

Trusted
Lifetime subscriber

  # 2328275 2-Oct-2019 08:56
Send private message quote this post

SirHumphreyAppleby:

 

It used to be that companies would just add three years to the expiry date and everything would work fine.

 

One of the payments I expected to fail actually went through last night. I'm not sure why a payment via Paypal would be accepted, but MyLotto couldn't process their regular subscription payment.

 

The problem now is the CV2 nonsense. The rules around how it is stored and used don't seem to be consistent... what is its purpose exactly? I thought it was to confirm the card was physically in the posession of the person. It shouldn't be relevant beyond the initial verification, and everything should just roll over to the new card.

 

 

No one is allowed to store your CVV. If they have tokenised your card then they don't need to have it.

 

Some banks will allow recurring transactions to be processed on a card after the expiry date. Some businesses track the expiry date and ask the customer to update their details. 





@Shadowfoot on Twitter


1019 posts

Uber Geek


  # 2328384 2-Oct-2019 12:55
One person supports this post
Send private message quote this post

Shadowfoot:

 

Some banks will allow recurring transactions to be processed on a card after the expiry date. Some businesses track the expiry date and ask the customer to update their details. 

 

 

The card hasn't expired, but something in the 'banks' system allowed one to be processed and the other not to be.

 

I am now told it will be 1-2 weeks before the card is manufactured and couriered to me. Fortunately, they have at least come to their senses and provided me with the details I need to continue using the card online and I have been able to book my travel. I'll have to use cash or my travel card in real life until then... I'll sort out the missing reward points later.

 

The ironic thing is, they gave me the details over the phone, not via their secure messaging system. So much for security.


 
 
 
 


3263 posts

Uber Geek


  # 2328441 2-Oct-2019 13:28
Send private message quote this post

No one is allowed to store your CVV.


I mentioned this to a DBA who has worked for several large financial institutes, including a couple of the largest local ones.

Of course he encrypts data at rest, and in transit. And of course there's lots of intrusion tests.

But the CVV rule is the first he heard of. I doubt many developers know that also. He's been frequently audited, though he admits most auditors are not technical, just relying on software to do the analysis.

A rule is only as good as the people enforcing it.

3263 posts

Uber Geek


  # 2328442 2-Oct-2019 13:30
Send private message quote this post

I looked up the rule:

For merchants who charge customers on a recurring basis, the CVV code can be used with the initial transaction but cannot be stored for future transactions.

So it's up to the merchant to delete them as soon as possible.

1180 posts

Uber Geek

Subscriber

  # 2328451 2-Oct-2019 13:40
Send private message quote this post

kingdragonfly:
No one is allowed to store your CVV.


I mentioned this to a DBA who has worked for several large financial institutes, including a couple of the largest local ones.

Of course he encrypts data at rest, and in transit. And of course there's lots of intrusion tests.

But the CVV rule is the first he heard of. I doubt many developers know that also. He's been frequently audited, though he admits most auditors are not technical, just relying on software to do the analysis.

A rule is only as good as the people enforcing it.

 

Just wait until you have to go through a PCI DSS (Payment Card Industry Data Security Standards) audit 😳


3263 posts

Uber Geek


  # 2328463 2-Oct-2019 14:13
Send private message quote this post

Not me.

I guess the software companies go through audit, do the paperwork.

I'd trust the software companies about as much as I trust Facebook to keep my personal information private.

6768 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2328490 2-Oct-2019 14:54
Send private message quote this post

The local council decided to install a new "pedestrian crossing" recently. I use quotes, because it's not a standard design, is not legally a crossing... and this untested design has apparently resulted in seven crashes since it was installed a couple of weeks ago.


 
 
 
 


21428 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2328850 3-Oct-2019 09:57
One person supports this post
Send private message quote this post

Jetstar! Cancelled my wifes flight which is supposed to leave in 6 hours, and I've been on hold for over an hour to rebook. 

 

This is why I pay extra for AirNZ.

 

 


14313 posts

Uber Geek

Trusted
Subscriber

  # 2328872 3-Oct-2019 10:19
Send private message quote this post

networkn:

 

Jetstar! Cancelled my wifes flight which is supposed to leave in 6 hours, and I've been on hold for over an hour to rebook. 

 

This is why I pay extra for AirNZ.

 

 

 

 

I would rather go by bus than travel Jetstar





Mike
Retired IT Manager. 
The views stated in my posts are my personal views and not that of any other organisation.

 

There is no planet B

 

 


Banana?
4871 posts

Uber Geek

Subscriber

  # 2328879 3-Oct-2019 10:27
One person supports this post
Send private message quote this post

allan:

 

kingdragonfly:
No one is allowed to store your CVV.


I mentioned this to a DBA who has worked for several large financial institutes, including a couple of the largest local ones.

Of course he encrypts data at rest, and in transit. And of course there's lots of intrusion tests.

But the CVV rule is the first he heard of. I doubt many developers know that also. He's been frequently audited, though he admits most auditors are not technical, just relying on software to do the analysis.

A rule is only as good as the people enforcing it.

 

Just wait until you have to go through a PCI DSS (Payment Card Industry Data Security Standards) audit 😳

 

 

We've just gone through one.

 

They put a data sniffer in line with our EFT terminals, and a wireshark running on the network to check our systems were not capturing or transmitting CC numbers in any form.

 

They also interviewed various staff around Credit Card procedures. Took about 3 hours. Hate to think how much it cost the business (though, it would have been considerably less than Test and Tag, which, IMO, is a rort).


2997 posts

Uber Geek

Lifetime subscriber

  # 2328915 3-Oct-2019 10:54
Send private message quote this post

trig42:

 

They put a data sniffer in line with our EFT terminals, and a wireshark running on the network to check our systems were not capturing or transmitting CC numbers in any form.

 

 

Seems kindof pointless... obviously they wouldn't find an CC numbers sent encrypted.

 

 


Banana?
4871 posts

Uber Geek

Subscriber

  # 2328921 3-Oct-2019 11:09
Send private message quote this post

frankv:

 

trig42:

 

They put a data sniffer in line with our EFT terminals, and a wireshark running on the network to check our systems were not capturing or transmitting CC numbers in any form.

 

 

Seems kindof pointless... obviously they wouldn't find an CC numbers sent encrypted.

 

 

 

 

I think they were looking for the numbers being sent from the USB pinpad to the PC running Eftpos software. They obviously are encrypted, but they need to check. Just like Test and Tag needs to check the hundreds of black PC power cords...


21428 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2328931 3-Oct-2019 11:21
2 people support this post
Send private message quote this post

MikeB4:

 

networkn:

 

Jetstar! Cancelled my wifes flight which is supposed to leave in 6 hours, and I've been on hold for over an hour to rebook. 

 

This is why I pay extra for AirNZ.

 

 

 

 

I would rather go by bus than travel Jetstar

 

 

In most cases I'd rather not go than Fly with Jetstar. After 2 hours on the phone and some back and forward whilst they tried their best to limit their liability and after a gentle suggestion that their terms and conditions can say whatever they want, but the law overwrites it where applicable, they have rerouted us. What a drama!

 

I spent longer on the phone than the two new flight length combined.

 

 


13430 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2329081 3-Oct-2019 15:41
2 people support this post
Send private message quote this post

Couriers. Again.

 

 

 

Calls DHL over missing international shipment.

 

 

 

"We will instruct our team to initiate a search. Our service standard is to call back with the location of the package within 2 hours."

 

 

 

1 hour and 45 minutes later

 

 

 

"Hello, this is DHL. I am afraid we have not heard back from Courier Post yet, so we won't be able to meet our service standard. We will call you before 0900 tomorrow. My apologies, but they have let us down by not responding to us in time."

 

 

 

 






2917 posts

Uber Geek


  # 2329136 3-Oct-2019 17:38
2 people support this post
Send private message quote this post

Behodar:

 

The local council decided to install a new "pedestrian crossing" recently. I use quotes, because it's not a standard design, is not legally a crossing... and this untested design has apparently resulted in seven crashes since it was installed a couple of weeks ago.

 

 

The Rotorua council love these crossings , ours are just red paint on the road and i have now noticed that they have signs up now telling pedestrians they are not real crossings and cars dont have to stop so look before you walk out. they tend to be at exits to roundabouts, like a car length away from the exit  and you always get someone stopping to let people cross and causing screeches of brakes as all cars have to stop and nothing moves.





Common sense is not as common as you think.


1 | ... | 539 | 540 | 541 | 542 | 543 | 544 | 545 | 546 | 547 | 548 | 549 | 550 | 551 | 552 | 553 | 554 | 555 | 556 | 557 | 558 | 559 | ... | 564
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Microsoft launches first Experience Center worldwide for Asia Pacific in Singapore
Posted 13-Nov-2019 13:08


Disney+ comes to LG Smart TVs
Posted 13-Nov-2019 12:55


Spark launches new wireless broadband "Unplan Metro"
Posted 11-Nov-2019 08:19


Malwarebytes overhauls flagship product with new UI, faster engine and lighter footprint
Posted 6-Nov-2019 11:48


CarbonClick launches into Digital Marketplaces
Posted 6-Nov-2019 11:42


Kordia offers Microsoft Azure Peering Service
Posted 6-Nov-2019 11:41


Spark 5G live on Auckland Harbour for Emirates Team New Zealand
Posted 4-Nov-2019 17:30


BNZ and Vodafone partner to boost NZ Tech for SME
Posted 31-Oct-2019 17:14


Nokia 7.2 available in New Zealand
Posted 31-Oct-2019 16:24


2talk launches Microsoft Teams Direct Routing product
Posted 29-Oct-2019 10:35


New Breast Cancer Foundation app puts power in Kiwi women's hands
Posted 25-Oct-2019 16:13


OPPO Reno2 Series lands, alongside hybrid noise-cancelling Wireless Headphones
Posted 24-Oct-2019 15:32


Waikato Data Scientists awarded $13 million from the Government
Posted 24-Oct-2019 15:27


D-Link launches Wave 2 Unified Access Points
Posted 24-Oct-2019 15:07


LG Electronics begins distributing the G8X THINQ
Posted 24-Oct-2019 10:58



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.