• jet@hackertalks.com
    link
    fedilink
    English
    arrow-up
    67
    ·
    1 year ago

    I thought Google wallet generated a unique card id for every transaction.

    This is a interesting bug, but I think fairly niche. Not many people use app pinning at all.

    • SuperIce@lemmy.world
      link
      fedilink
      English
      arrow-up
      12
      ·
      1 year ago

      If the PoS supports tokens, it’ll use unique tokens for each payment. If the PoS doesn’t support tokens, the phone has a virtual credit card number linked to the real one, so if it does get stolen, you can just remove the card from your Google Wallet to deactivate it. Your real card number is never exposed.

      Even then, credit card numbers on their own aren’t that useful anymore. Any online payment needs the CVC and PoS devices usually require chip or tap cards, which don’t use the number. On top of that, credit card companies have purchase price restrictions when using swipe because of the security risks vs chip (which is why most PoS devices don’t support swipe anymore).

    • Skull giver@popplesburger.hilciferous.nl
      link
      fedilink
      English
      arrow-up
      3
      ·
      1 year ago

      I tried to use app pinnigg once. Foolishly, I believed MIUI could handle me pressing the pin button.

      Turns out it wanted a key combo to unpin the app, but I had turned on gesture navigation so the buttons never appeared.

      A few quick reboots let me change the setting back before the phone realised the app should be pinned and let me fix the problem, but it shows how these little-tested features can get overlooked!