Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
1 | ... | 539 | 540 | 541 | 542 | 543 | 544 | 545 | 546 | 547 | 548 | 549 | 550 | 551 | 552 | 553 | 554 | 555 | 556 | 557 | 558 | 559 | ... | 596
First time caller
215 posts

Master Geek

Trusted
Lifetime subscriber

  # 2328275 2-Oct-2019 08:56
Send private message quote this post

SirHumphreyAppleby:

 

It used to be that companies would just add three years to the expiry date and everything would work fine.

 

One of the payments I expected to fail actually went through last night. I'm not sure why a payment via Paypal would be accepted, but MyLotto couldn't process their regular subscription payment.

 

The problem now is the CV2 nonsense. The rules around how it is stored and used don't seem to be consistent... what is its purpose exactly? I thought it was to confirm the card was physically in the posession of the person. It shouldn't be relevant beyond the initial verification, and everything should just roll over to the new card.

 

 

No one is allowed to store your CVV. If they have tokenised your card then they don't need to have it.

 

Some banks will allow recurring transactions to be processed on a card after the expiry date. Some businesses track the expiry date and ask the customer to update their details. 





@Shadowfoot on Twitter


1086 posts

Uber Geek


  # 2328384 2-Oct-2019 12:55
One person supports this post
Send private message quote this post

Shadowfoot:

 

Some banks will allow recurring transactions to be processed on a card after the expiry date. Some businesses track the expiry date and ask the customer to update their details. 

 

 

The card hasn't expired, but something in the 'banks' system allowed one to be processed and the other not to be.

 

I am now told it will be 1-2 weeks before the card is manufactured and couriered to me. Fortunately, they have at least come to their senses and provided me with the details I need to continue using the card online and I have been able to book my travel. I'll have to use cash or my travel card in real life until then... I'll sort out the missing reward points later.

 

The ironic thing is, they gave me the details over the phone, not via their secure messaging system. So much for security.


 
 
 
 


3548 posts

Uber Geek


  # 2328441 2-Oct-2019 13:28
Send private message quote this post

No one is allowed to store your CVV.


I mentioned this to a DBA who has worked for several large financial institutes, including a couple of the largest local ones.

Of course he encrypts data at rest, and in transit. And of course there's lots of intrusion tests.

But the CVV rule is the first he heard of. I doubt many developers know that also. He's been frequently audited, though he admits most auditors are not technical, just relying on software to do the analysis.

A rule is only as good as the people enforcing it.

3548 posts

Uber Geek


  # 2328442 2-Oct-2019 13:30
Send private message quote this post

I looked up the rule:

For merchants who charge customers on a recurring basis, the CVV code can be used with the initial transaction but cannot be stored for future transactions.

So it's up to the merchant to delete them as soon as possible.

1205 posts

Uber Geek

Subscriber

  # 2328451 2-Oct-2019 13:40
Send private message quote this post

kingdragonfly:
No one is allowed to store your CVV.


I mentioned this to a DBA who has worked for several large financial institutes, including a couple of the largest local ones.

Of course he encrypts data at rest, and in transit. And of course there's lots of intrusion tests.

But the CVV rule is the first he heard of. I doubt many developers know that also. He's been frequently audited, though he admits most auditors are not technical, just relying on software to do the analysis.

A rule is only as good as the people enforcing it.

 

Just wait until you have to go through a PCI DSS (Payment Card Industry Data Security Standards) audit 😳


3548 posts

Uber Geek


  # 2328463 2-Oct-2019 14:13
Send private message quote this post

Not me.

I guess the software companies go through audit, do the paperwork.

I'd trust the software companies about as much as I trust Facebook to keep my personal information private.

6873 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2328490 2-Oct-2019 14:54
Send private message quote this post

The local council decided to install a new "pedestrian crossing" recently. I use quotes, because it's not a standard design, is not legally a crossing... and this untested design has apparently resulted in seven crashes since it was installed a couple of weeks ago.


 
 
 
 


21748 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2328850 3-Oct-2019 09:57
One person supports this post
Send private message quote this post

Jetstar! Cancelled my wifes flight which is supposed to leave in 6 hours, and I've been on hold for over an hour to rebook. 

 

This is why I pay extra for AirNZ.

 

 


14575 posts

Uber Geek

Trusted
Subscriber

  # 2328872 3-Oct-2019 10:19
Send private message quote this post

networkn:

 

Jetstar! Cancelled my wifes flight which is supposed to leave in 6 hours, and I've been on hold for over an hour to rebook. 

 

This is why I pay extra for AirNZ.

 

 

 

 

I would rather go by bus than travel Jetstar





Mike
Retired IT Manager. 
The views stated in my posts are my personal views and not that of any other organisation.

 

There is no planet B

 

 


Banana?
4902 posts

Uber Geek

Subscriber

  # 2328879 3-Oct-2019 10:27
One person supports this post
Send private message quote this post

allan:

 

kingdragonfly:
No one is allowed to store your CVV.


I mentioned this to a DBA who has worked for several large financial institutes, including a couple of the largest local ones.

Of course he encrypts data at rest, and in transit. And of course there's lots of intrusion tests.

But the CVV rule is the first he heard of. I doubt many developers know that also. He's been frequently audited, though he admits most auditors are not technical, just relying on software to do the analysis.

A rule is only as good as the people enforcing it.

 

Just wait until you have to go through a PCI DSS (Payment Card Industry Data Security Standards) audit 😳

 

 

We've just gone through one.

 

They put a data sniffer in line with our EFT terminals, and a wireshark running on the network to check our systems were not capturing or transmitting CC numbers in any form.

 

They also interviewed various staff around Credit Card procedures. Took about 3 hours. Hate to think how much it cost the business (though, it would have been considerably less than Test and Tag, which, IMO, is a rort).


3059 posts

Uber Geek

Lifetime subscriber

  # 2328915 3-Oct-2019 10:54
Send private message quote this post

trig42:

 

They put a data sniffer in line with our EFT terminals, and a wireshark running on the network to check our systems were not capturing or transmitting CC numbers in any form.

 

 

Seems kindof pointless... obviously they wouldn't find an CC numbers sent encrypted.

 

 


Banana?
4902 posts

Uber Geek

Subscriber

  # 2328921 3-Oct-2019 11:09
Send private message quote this post

frankv:

 

trig42:

 

They put a data sniffer in line with our EFT terminals, and a wireshark running on the network to check our systems were not capturing or transmitting CC numbers in any form.

 

 

Seems kindof pointless... obviously they wouldn't find an CC numbers sent encrypted.

 

 

 

 

I think they were looking for the numbers being sent from the USB pinpad to the PC running Eftpos software. They obviously are encrypted, but they need to check. Just like Test and Tag needs to check the hundreds of black PC power cords...


21748 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2328931 3-Oct-2019 11:21
2 people support this post
Send private message quote this post

MikeB4:

 

networkn:

 

Jetstar! Cancelled my wifes flight which is supposed to leave in 6 hours, and I've been on hold for over an hour to rebook. 

 

This is why I pay extra for AirNZ.

 

 

 

 

I would rather go by bus than travel Jetstar

 

 

In most cases I'd rather not go than Fly with Jetstar. After 2 hours on the phone and some back and forward whilst they tried their best to limit their liability and after a gentle suggestion that their terms and conditions can say whatever they want, but the law overwrites it where applicable, they have rerouted us. What a drama!

 

I spent longer on the phone than the two new flight length combined.

 

 


13732 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2329081 3-Oct-2019 15:41
2 people support this post
Send private message quote this post

Couriers. Again.

 

 

 

Calls DHL over missing international shipment.

 

 

 

"We will instruct our team to initiate a search. Our service standard is to call back with the location of the package within 2 hours."

 

 

 

1 hour and 45 minutes later

 

 

 

"Hello, this is DHL. I am afraid we have not heard back from Courier Post yet, so we won't be able to meet our service standard. We will call you before 0900 tomorrow. My apologies, but they have let us down by not responding to us in time."

 

 

 

 






2984 posts

Uber Geek


  # 2329136 3-Oct-2019 17:38
2 people support this post
Send private message quote this post

Behodar:

 

The local council decided to install a new "pedestrian crossing" recently. I use quotes, because it's not a standard design, is not legally a crossing... and this untested design has apparently resulted in seven crashes since it was installed a couple of weeks ago.

 

 

The Rotorua council love these crossings , ours are just red paint on the road and i have now noticed that they have signs up now telling pedestrians they are not real crossings and cars dont have to stop so look before you walk out. they tend to be at exits to roundabouts, like a car length away from the exit  and you always get someone stopping to let people cross and causing screeches of brakes as all cars have to stop and nothing moves.





Common sense is not as common as you think.


1 | ... | 539 | 540 | 541 | 542 | 543 | 544 | 545 | 546 | 547 | 548 | 549 | 550 | 551 | 552 | 553 | 554 | 555 | 556 | 557 | 558 | 559 | ... | 596
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Vodafone integrates eSIM into device and wearable roadmap
Posted 17-Jan-2020 09:45


Do you need this camera app? Group investigates privacy implications
Posted 16-Jan-2020 03:30


JBL launches headphones range designed for gaming
Posted 13-Jan-2020 09:59


Withings introduces ScanWatch wearable combining ECG and sleep apnea detection
Posted 9-Jan-2020 18:34


NZ Police releases public app
Posted 8-Jan-2020 11:43


Suunto 7 combine sports and smart features on new smartwatch generation
Posted 7-Jan-2020 16:06


Intel brings innovation with technology spanning the cloud, network, edge and PC
Posted 7-Jan-2020 15:54


AMD announces high performance desktop and ultrathin laptop processors
Posted 7-Jan-2020 15:42


AMD unveils four new desktop and mobile GPUs including AMD Radeon RX 5600
Posted 7-Jan-2020 15:32


Consolidation in video streaming market with Spark selling Lightbox to Sky
Posted 19-Dec-2019 09:09


Intel introduces cryogenic control chip to enable quantum computers
Posted 10-Dec-2019 21:32


Vodafone 5G service live in four cities
Posted 10-Dec-2019 08:30


Samsung Galaxy Fold now available in New Zealand
Posted 6-Dec-2019 00:01


NZ company oDocs awarded US$ 100,000 Dubai World Expo grant
Posted 5-Dec-2019 16:00


New Zealand Rugby Selects AWS-Powered Analytics for Deeper Game Insights
Posted 5-Dec-2019 11:33



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.