Skip navigation EPAM
  • Enter your search query or select one from the list of frequent searches below. Use up and down arrows to review and enter to select.

Card Fraud in a PSD2 World: A Few Examples

Timur Yunusov

Head of Offensive Security Research
  • Application Security

In January of 2018 the European Union adopted Payment Service Directive v2.0 (PSD2), which, among other regulations, requires multi-factor authentication in order to prevent Tap-and-Go fraud with contactless cards.

However, a fast changing threatscape in the payments industry and new emerging attack techniques are challenging the best defenses. In our recent research, we found several ways to bypass required multi-factor authentication for both MasterCard and Visa cards, including offline PIN attacks.

Download the full research whitepaper now!

Get Whitepaper

Successfully submitted! Please check your email for the link to the whitepaper you requested.

Oops, something went wrong. Please try again.

If your download doesn't start automatically, please click

Validation failed! Please use the same browser and device that you used to fill out this form. You can also re-submit the form to receive a new download link.

Thank you for helping us keep your information up-to-date.


We Can Help

Our experts can help identify vulnerabilities and threats to keep your business secure.