In our research, we uncovered critical flaws in the security protocols of major digital wallet applications, enabling attackers to exploit weaknesses for unauthorized transactions.
The vulnerabilities exist in authentication and access controls, meaning that even if a card is canceled, it remains accessible in the digital wallet for use.
An attacker can leverage publicly available information to bypass wallet security, effectively allowing them to shop for free at the expense of the victim.
Our findings stress the importance of reinforcing digital wallet security systems, particularly regarding how they validate user identity and authorize new payment methods.
[
Collection
]
[
|
...
]