Author: CNN Newssource SHARE LAS VEGAS (CNN) — Computer researchers claim to have found yet another flaw in the upgrade to the chip-based credit cards in the United States.The chip on these credit cards have been praised for making them nearly impossible to counterfeit. While the cards also contain a magnetic strip, that strip is supposed to tell the payment machine to use the chip.But there’s a relatively easy way to knock down that safeguard.Computer security researchers at the payment technology company NCR demonstrated how credit card thieves can rewrite the magnetic stripe code to make it appear like a chipless card again. This allows them to keep counterfeiting — just like they did before the nationwide switch to chip cards.They presented their findings at the Black Hat computer security conference on Wednesday.This claim of a glaring hole in EMV, the chip-based system, is possible because of the way many retailers are upgrading their payment machines: They’re not encrypting the transaction.“There’s a common misperception EMV solves everything. It doesn’t,” Patrick Watson, one of the researchers, told CNNMoney.On Thursday, a banking and retail industry group that monitors the EMV system cast doubt on the theory.“If the data on the magnetic stripe is altered it might fool the terminal,” said U.S. Payments Forum director Randy Vanderhoof. But on the back end, the system would “reject the transaction.”But the discovery of this possible flaw bolsters the retail industry’s complaints against the upgrade, which was forced upon shops by banks.The National Retail Federation has long complained about the upgrade, which is estimated to cost American retailers $25 billion.This latest research shows that retailers could spend millions of dollars upgrading to EMV and still not protect their customers from a massive credit card theft like the Target and Home Depot hacks two years ago.Adding to the problem, payment terminal makers keep producing machines that don’t have the encryption by default.And vendors who sell and install these machines at shops don’t simply flip the switch and turn on encryption. Retailers have to pay extra for basic security.The major machine makers, Verifone and Ingenico, both asserted they offer point-to-point encryption on retailer’s machines — but it’s up to retailers and their partners to turn it on.Currently, retailers focus on protecting the computer network that support their payment system. But that leaves the actual conversation between your credit card and the machine in plain text, readable to any hacker who breaks into the system.It’s a mistake, said Mike Weber, vice president at the IT auditing firm Coalfire.“They’re assuming the environment is OK,” he said. It’s not.During their presentation, the NCR researchers advised shops to “encrypt everything” in a transaction. They also said consumers should pay with special apps on their phones and watches whenever the high tech option is available. Do you see a typo or an error? Let us know. Published: August 4, 2016 3:18 PM EDT New security flaw in credit card chip system revealed
The number of lawyers in Whitehall could shrink as the government continues to centralise legal services under a new brand name, says the head of the Government Legal Service. Several government legal teams have been brought into the Treasury Solicitor’s Department (TSol) over the past two years – including the Home Office and Ministry of Justice – under the line management of Jonathan Jones (pictured), Treasury solicitor and head of the Government Legal Service.TSol, which will be renamed the Government Legal Department, is in ‘active discussion’ with the Ministry of Defence and Department of Energy and Climate Change, Jones told the Whitehall and Industry Group last week.The new structure, he said, enabled the department to eliminate duplication and overlap. But he warned changes were taking place in a period of continuing, and increasing, financial constraint.TSol, which has more than 1,300 lawyers, has an annual budget of £160m, ‘almost entirely’ from fees charged to other government departments for the work it does for them – these are a combination of hourly rates (mainly for litigation work) and fixed fees (for advisory work). Jones said there was a ‘clear imperative on me and on the GLS to demonstrate that we are providing the government’s legal needs as efficiently and as economically as possible. It absolutely cannot be right that when so much of the rest of the civil service is facing cuts, lawyers are somehow exempt’.Measures include ‘looking carefully at… whether lawyers need to be replaced when they move on or when particular projects are complete,’ Jones said.Looking ahead to May’s general election, Jones predicted a ‘joined-up, coordinated legal response’ will be required to meet the demands of ‘big topics’ such as Europe, immigration and devolution that any new government will be confronted with. As a result, new joint teams or other structures may have to be established, he said.
Related ABC/Paula Lobo(NEW YORK) — Terry Crews has publicly named for the first time the high-powered talent agent he claims groped him at an industry party, and says he will “not be shamed” about the alleged assault.“Back in February 2016, I was assaulted by Adam Venit, who is head of the Motion Picture Department at William Morris Endeavor, one of the biggest agencies in the world,” Crews said Wednesday on ABC’s Good Morning America. “He’s connected to probably everyone I know in the business. I did not know this man. I have never had a conversation with him, ever.”Venit has represented stars including Adam Sandler, Eddie Murphy, Sylvester Stallone, Diane Keaton, Liam Hemsworth, and Steve Martin.The Brooklyn Nine-Nine star was with his wife, Rebecca King-Crews, at the party last year when he claims Venit began sticking out his tongue in an “overtly sexual” manner.“I’m looking like, ‘Is this a joke?’ It was actually so bizarre,” Crews said. “He comes over to me and I stick my hand out and he literally takes his hand and puts it and squeezes my genitals. I jump back like, ‘Hey, hey.’”Crews claims he then pushed Venit away from him, causing Venit to bump into other partygoers.“I have never felt more emasculated, more objectified. I was horrified,” Crews said. “It’s so bizarre. I wake up every morning wondering, ‘Did this really happen?’”“It was an abuse of power. This is abuse,” Crews added. “This is the thing that a lot of people just don’t understand and they end up blaming the victim. And I have totally said — I will not be shamed.”William Morris Endeavor confirmed to ABC News that, “Adam Venit was suspended following the internal investigation into the matter.”Crews filed a police report Nov. 8 in connection with the alleged incident.Copyright © 2017, ABC Radio. All rights reserved.Powered by WPeMatico