how can we use apple pay and got hack? it seems the service is not secured

Sawitcha21 wrote:

I reject on this response as i have been using only apple pay no online shopping i don’t know how they can hack and know about my last digit ?

As you can see, the Apple Pay transactions do not know anything about the digits on your card. With that said, it does appear that your card has been compromised using a method other than Apple Pay.

• Have you ever used the card at a retailer/gas station?
• Do you have a Facebook account?
• Does anyone know your password/passcode?
• Contact the bank the card is issued from to dispute the charges and they should also be able to provide more information on how the card was processed.

The time frame is coincidence. The time frame from when your data is acquired via skimming, shimming or a BIN attack can be weeks or months.

Here’s a YouTube video that will help you understand skimming,

https://youtu.be/9--r1KTKdjg?si=ZGMvy-pFjW36dKMr

Here’s one on shimming

https://youtu.be/8YeEkcHuWQA?si=ePATRto2RkwTcmH2

Lastly, this may help you understand Apple Pay better

https://youtu.be/8XB__8HHqss?si=sXxnd-uHQbf1pCFc

None of these are official Apple videos and are produced independently.

Apple Pay only transmits encrypted data between merchant and bank and back to merchant. Neither your iPhone nor Apple has the key to decrypt the data. Only your bank has the key to decrypt the data. The merchant only receives the necessary data to complete the transaction. The only decrypted part of the card information the merchant receives is the last digits of the device number (Apple Pay number).

So, your hacking/fraud claim happened some other way than Apple Pay.

If you have ever used your physical card by swiping or using the chip, your data can be harvested. Your credit card number was skimmed or shimmed. Skimming is when you swipe your card and the magnetic data is captured by a device called a skimmer. Fraudulent actors then enter the data online or create a fraudulent card (fake) with your data. A shimmer is similar, but captures data off the chip.

No, your credit card number was skimmed or shimmed. Skimming is when you swipe your card and the magnetic data is captured by a device called a skimmer. Fraudulent actors then enter the data online or create a fraudulent card (fake) with your data. A shimmer is similar, but captures data off the chip.

Another popular way of harvesting credit/debit card data is a brute force BIN attack. Fraudulent actors gain access to a smaller business with weak security. They know the first 6 digits of the credit card is the Bank Identification Number (BIN) and put through tens of thousands of numbers and collect the hits that work. Then they use the numbers in a website and collect transaction data that work. This data can be sold on the dark web or used for fraudulent transactions at merchants.

Someone has access to your card details or you made purchases that you forgot. You were not hacked though Apple Pay, that is effectively impossible.