Skip navigation EPAM
  • Enter your search query or select one from the list of frequent searches below. Use up and down arrows to review and enter to select.

Card Fraud in a PSD2 World: A Few Examples

Timur Yunusov

Head of Offensive Security Research
  • Application Security

In January of 2018 the European Union adopted Payment Service Directive v2.0 (PSD2), which, among other regulations, requires multi-factor authentication in order to prevent Tap-and-Go fraud with contactless cards.

However, a fast changing threatscape in the payments industry and new emerging attack techniques are challenging the best defenses. In our recent research, we found several ways to bypass required multi-factor authentication for both MasterCard and Visa cards, including offline PIN attacks.

Click here to access the full research whitepaper.


We Can Help

Our experts can help identify vulnerabilities and threats to keep your business secure.