Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
1 | ... | 539 | 540 | 541 | 542 | 543 | 544 | 545 | 546 | 547 | 548 | 549 | 550 | 551 | 552 | 553 | 554 | 555
First time caller
202 posts

Master Geek

Trusted
Lifetime subscriber

  # 2328275 2-Oct-2019 08:56
Send private message quote this post

SirHumphreyAppleby:

 

It used to be that companies would just add three years to the expiry date and everything would work fine.

 

One of the payments I expected to fail actually went through last night. I'm not sure why a payment via Paypal would be accepted, but MyLotto couldn't process their regular subscription payment.

 

The problem now is the CV2 nonsense. The rules around how it is stored and used don't seem to be consistent... what is its purpose exactly? I thought it was to confirm the card was physically in the posession of the person. It shouldn't be relevant beyond the initial verification, and everything should just roll over to the new card.

 

 

No one is allowed to store your CVV. If they have tokenised your card then they don't need to have it.

 

Some banks will allow recurring transactions to be processed on a card after the expiry date. Some businesses track the expiry date and ask the customer to update their details. 





@Shadowfoot on Twitter


947 posts

Ultimate Geek


  # 2328384 2-Oct-2019 12:55
One person supports this post
Send private message quote this post

Shadowfoot:

 

Some banks will allow recurring transactions to be processed on a card after the expiry date. Some businesses track the expiry date and ask the customer to update their details. 

 

 

The card hasn't expired, but something in the 'banks' system allowed one to be processed and the other not to be.

 

I am now told it will be 1-2 weeks before the card is manufactured and couriered to me. Fortunately, they have at least come to their senses and provided me with the details I need to continue using the card online and I have been able to book my travel. I'll have to use cash or my travel card in real life until then... I'll sort out the missing reward points later.

 

The ironic thing is, they gave me the details over the phone, not via their secure messaging system. So much for security.


 
 
 
 


3128 posts

Uber Geek


  # 2328441 2-Oct-2019 13:28
Send private message quote this post

No one is allowed to store your CVV.


I mentioned this to a DBA who has worked for several large financial institutes, including a couple of the largest local ones.

Of course he encrypts data at rest, and in transit. And of course there's lots of intrusion tests.

But the CVV rule is the first he heard of. I doubt many developers know that also. He's been frequently audited, though he admits most auditors are not technical, just relying on software to do the analysis.

A rule is only as good as the people enforcing it.

3128 posts

Uber Geek


  # 2328442 2-Oct-2019 13:30
Send private message quote this post

I looked up the rule:

For merchants who charge customers on a recurring basis, the CVV code can be used with the initial transaction but cannot be stored for future transactions.

So it's up to the merchant to delete them as soon as possible.

1177 posts

Uber Geek

Subscriber

  # 2328451 2-Oct-2019 13:40
Send private message quote this post

kingdragonfly:
No one is allowed to store your CVV.


I mentioned this to a DBA who has worked for several large financial institutes, including a couple of the largest local ones.

Of course he encrypts data at rest, and in transit. And of course there's lots of intrusion tests.

But the CVV rule is the first he heard of. I doubt many developers know that also. He's been frequently audited, though he admits most auditors are not technical, just relying on software to do the analysis.

A rule is only as good as the people enforcing it.

 

Just wait until you have to go through a PCI DSS (Payment Card Industry Data Security Standards) audit 😳


3128 posts

Uber Geek


  # 2328463 2-Oct-2019 14:13
Send private message quote this post

Not me.

I guess the software companies go through audit, do the paperwork.

I'd trust the software companies about as much as I trust Facebook to keep my personal information private.

6731 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2328490 2-Oct-2019 14:54
Send private message quote this post

The local council decided to install a new "pedestrian crossing" recently. I use quotes, because it's not a standard design, is not legally a crossing... and this untested design has apparently resulted in seven crashes since it was installed a couple of weeks ago.


 
 
 
 


21299 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2328850 3-Oct-2019 09:57
One person supports this post
Send private message quote this post

Jetstar! Cancelled my wifes flight which is supposed to leave in 6 hours, and I've been on hold for over an hour to rebook. 

 

This is why I pay extra for AirNZ.

 

 


14225 posts

Uber Geek

Trusted
Subscriber

  # 2328872 3-Oct-2019 10:19
Send private message quote this post

networkn:

 

Jetstar! Cancelled my wifes flight which is supposed to leave in 6 hours, and I've been on hold for over an hour to rebook. 

 

This is why I pay extra for AirNZ.

 

 

 

 

I would rather go by bus than travel Jetstar





Mike
Retired IT Manager. 
The views stated in my posts are my personal views and not that of any other organisation.

 

There is no planet B

 

 


Banana?
4855 posts

Uber Geek

Subscriber

  # 2328879 3-Oct-2019 10:27
One person supports this post
Send private message quote this post

allan:

 

kingdragonfly:
No one is allowed to store your CVV.


I mentioned this to a DBA who has worked for several large financial institutes, including a couple of the largest local ones.

Of course he encrypts data at rest, and in transit. And of course there's lots of intrusion tests.

But the CVV rule is the first he heard of. I doubt many developers know that also. He's been frequently audited, though he admits most auditors are not technical, just relying on software to do the analysis.

A rule is only as good as the people enforcing it.

 

Just wait until you have to go through a PCI DSS (Payment Card Industry Data Security Standards) audit 😳

 

 

We've just gone through one.

 

They put a data sniffer in line with our EFT terminals, and a wireshark running on the network to check our systems were not capturing or transmitting CC numbers in any form.

 

They also interviewed various staff around Credit Card procedures. Took about 3 hours. Hate to think how much it cost the business (though, it would have been considerably less than Test and Tag, which, IMO, is a rort).


2987 posts

Uber Geek

Lifetime subscriber

  # 2328915 3-Oct-2019 10:54
Send private message quote this post

trig42:

 

They put a data sniffer in line with our EFT terminals, and a wireshark running on the network to check our systems were not capturing or transmitting CC numbers in any form.

 

 

Seems kindof pointless... obviously they wouldn't find an CC numbers sent encrypted.

 

 


Banana?
4855 posts

Uber Geek

Subscriber

  # 2328921 3-Oct-2019 11:09
Send private message quote this post

frankv:

 

trig42:

 

They put a data sniffer in line with our EFT terminals, and a wireshark running on the network to check our systems were not capturing or transmitting CC numbers in any form.

 

 

Seems kindof pointless... obviously they wouldn't find an CC numbers sent encrypted.

 

 

 

 

I think they were looking for the numbers being sent from the USB pinpad to the PC running Eftpos software. They obviously are encrypted, but they need to check. Just like Test and Tag needs to check the hundreds of black PC power cords...


21299 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2328931 3-Oct-2019 11:21
2 people support this post
Send private message quote this post

MikeB4:

 

networkn:

 

Jetstar! Cancelled my wifes flight which is supposed to leave in 6 hours, and I've been on hold for over an hour to rebook. 

 

This is why I pay extra for AirNZ.

 

 

 

 

I would rather go by bus than travel Jetstar

 

 

In most cases I'd rather not go than Fly with Jetstar. After 2 hours on the phone and some back and forward whilst they tried their best to limit their liability and after a gentle suggestion that their terms and conditions can say whatever they want, but the law overwrites it where applicable, they have rerouted us. What a drama!

 

I spent longer on the phone than the two new flight length combined.

 

 


13320 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2329081 3-Oct-2019 15:41
2 people support this post
Send private message quote this post

Couriers. Again.

 

 

 

Calls DHL over missing international shipment.

 

 

 

"We will instruct our team to initiate a search. Our service standard is to call back with the location of the package within 2 hours."

 

 

 

1 hour and 45 minutes later

 

 

 

"Hello, this is DHL. I am afraid we have not heard back from Courier Post yet, so we won't be able to meet our service standard. We will call you before 0900 tomorrow. My apologies, but they have let us down by not responding to us in time."

 

 

 

 






2904 posts

Uber Geek


  # 2329136 3-Oct-2019 17:38
2 people support this post
Send private message quote this post

Behodar:

 

The local council decided to install a new "pedestrian crossing" recently. I use quotes, because it's not a standard design, is not legally a crossing... and this untested design has apparently resulted in seven crashes since it was installed a couple of weeks ago.

 

 

The Rotorua council love these crossings , ours are just red paint on the road and i have now noticed that they have signs up now telling pedestrians they are not real crossings and cars dont have to stop so look before you walk out. they tend to be at exits to roundabouts, like a car length away from the exit  and you always get someone stopping to let people cross and causing screeches of brakes as all cars have to stop and nothing moves.





Common sense is not as common as you think.


1 | ... | 539 | 540 | 541 | 542 | 543 | 544 | 545 | 546 | 547 | 548 | 549 | 550 | 551 | 552 | 553 | 554 | 555
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Microsoft New Zealand Partner Awards results
Posted 18-Oct-2019 10:18


Logitech introduces new Made for Google keyboard and mouse devices
Posted 16-Oct-2019 13:36


MATTR launches to accelerate decentralised identity
Posted 16-Oct-2019 10:28


Vodafone X-Squad powers up for customers
Posted 16-Oct-2019 08:15


D Link ANZ launches EXO Smart Mesh Wi Fi Routers with McAfee protection
Posted 15-Oct-2019 11:31


Major Japanese retailer partners with smart New Zealand technology IMAGR
Posted 14-Oct-2019 10:29


Ola pioneers one-time passcode feature to fight rideshare fraud
Posted 14-Oct-2019 10:24


Spark Sport new home of NZC matches from 2020
Posted 10-Oct-2019 09:59


Meet Nola, Noel Leeming's new digital employee
Posted 4-Oct-2019 08:07


Registrations for Sprout Accelerator open for 2020 season
Posted 4-Oct-2019 08:02


Teletrac Navman welcomes AI tech leader Jens Meggers as new President
Posted 4-Oct-2019 07:41


Vodafone makes voice of 4G (VoLTE) official
Posted 4-Oct-2019 07:36


2degrees Reaches Milestone of 100,000 Broadband Customers
Posted 1-Oct-2019 09:17


Nokia 1 Plus available in New Zealand from 2nd October
Posted 30-Sep-2019 17:46


Ola integrates Apple Pay as payment method in New Zealand
Posted 25-Sep-2019 09:51



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.