Mandated Credit Card Readers are a Security Risk, Say Experts

Security experts are criticizing state and regional proposals that would require credit card readers at new and existing electric car charging stations. Vermont, Nevada, California, and Arizona are among the states considering this mandate. However, a study by cybersecurity experts April Wright and Jayson Street working with the Digital Citizens Alliance says that these proposals would put drivers more at risk for identity theft.

Related: The Best Password Managers of 2019

Why Are Credit Card Chargers Dangerous for Cybersecurity?

credit-card
The magnetic strip on the back of credit cards makes consumers vulnerable to identity theft, according to cybersecurity experts.

The security problem lies with the magnetic stripe on the back of credit cards, Wright told Security Baron in an interview. While skimming is a hardware method for capturing credit card details, shimming is used when the card has a chip, attempting to bypass the chip and force the user to use the magnetic strip. Wright told Security Baron,

“These proposals that mandate that all EV charging stations have credit card readers are a step in the wrong direction…it’s much more secure and more in line with what the payment industry wants to move over to chips from magnetic strips.”

While there is no electronic payment method that’s completely safe from skimming and shimming, credit card readers are the most vulnerable, Wright continued.

The United States Secret Service vs. Credit Card Readers

In the past few years, the United States Secret Service has cracked down on fraud related to credit card readers, taking the following steps among others:

  • In 2017, Colorado law enforcements busted a 12-person skimming ring that stole about $2.5 million per week on average from more than 8,000 victims
  • In 2018, the Secret Service announced that they had removed almost 200 credit card readers from gas stations in 16 different states
  • In 2019, authorities arrested six people in Arizona that had targeted the credit card readers of 12 different gas stations around Phoenix through skimming

ChargePoint Home Chargers at Risk

Aside from the security risk of mandating credit card readers to electric car charing stations, cybersecurity experts have also found vulnerabilities in the chargers themselves. Kaspersky Lab, a cybersecurity company, found that chargers from ChargePoint Home could easily be hacked. Once the hackers gained access, they could either prevent the car from charging or increase the current, which could damage a home’s electrical system. Since, ChargePoint has claimed that they fixed the charger’s security.

Aliza Vigderman

Aliza Vigderman

Aliza is a journalist living in Brooklyn, New York. Throughout her career, her work has spanned many intersections within the tech industry. At SquareFoot, a New York-based real estate technology company, she wrote about the ways in which technology has changed the real estate industry, as well as the challenges that business owners face when they want to invest in property. At Degreed.com, an education technology website, Aliza created digital content for lifelong learners, exploring the ways in which technology has democratized education. Additionally, she has written articles for The Huffington Post as well as her own content on Medium, the online publishing platform. Aliza’s love of journalism and research stems from the excellent Journalism program at Brandeis University. At Brandeis, Aliza interned as a research assistant at the Schuster Institute for Investigative Journalism, a non-profit “news room without walls”. There, Aliza was paired with an investigative journalist and used academic databases to obtain data on everything from the suicide rates in Bhutan to local Boston court cases. Her last position was as an account executive at Yelp, educating business owners on the power of technology to increase revenue. Throughout, however, her heart remained with tech journalism, and she’s thrilled to be writing for Security Baron. When she’s not keeping afloat of the latest tech trends, Aliza likes to cook, read, and write. A former high school “Class Clown,” Aliza has completed two feature-length screenplays, a pilot, and countless comedic sketches. On her days off you can find her relaxing in Prospect Park, trying the latest flavors at Ample Hills Ice Cream, and spending time with friends and family.

2 thoughts on “Mandated Credit Card Readers are a Security Risk, Say Experts”

    • There can be a security issue even if there’s a chip reader. Shimming bypasses the chip and forces the person to use the magnetic strip.

Leave a Comment

Trending News

Follow Us

Reviews