Loading...
Google Wallet's PIN Verification Cracked (Again), No Root Access Required
Yesterday, a security firm called vZelo demonstrated a vulnerability within Google Wallet, cracking its PIN verification system using brute force, giving Wallet access to anyone who had the exploit. It was also revealed that the hack only worked on rooted devices, and Google swiftly reported that a fix for the bug was already being worked on.
Adding to Google Wallet's security worries, a new hack was posted online today, claiming to give access to Google Wallet (sans PIN) on non-rooted devices, requiring just a few steps to gain user information (and funds).
The Smartphone Champ reported on the newly-discovered flaw, explaining just how the exploit works:
At the moment, all users of Google Wallet are technically at risk, though both exploits require any nefarious user to be holding your phone in order to gain access to information/funds. Google has yet to say anything about the new vulnerability or when it may be remedied, but we'll be here to cover any new developments as they emerge.
Via 9to5Google