Security Hole In Google Wallet Allows Anyone To Access Your Funds [News]

If you use Google Wallet on your Android device, keep a good eye on your phone. As revealed in a video by the blog The Smartphone Champ, a vulnerability in Google Wallet allows anyone who finds your phone to easily access your funds on a Google prepaid card.

With this hack, all a person has to do in order to access your Google Wallet is go to your phones application settings, find the Google Wallet app and choose to clear all its data. This will reset the app, and the next time it’s opened, it will ask the user to create a new PIN, as if it’s running for the first time. And here is the catch, Google prepaid cards are not tied to your Google account, but to the device itself, so when a new PIN has been set, the card can be easily added back, along with access to your funds.

Earlier this week, another hack was exposed by security blog Zvelo, which compromises the Google Wallet PIN number. This method, however, requires the device to be rooted, which renders the whole operation much harder to execute. This new method, however, can be used by literally anyone.

According to CNET, Google has released the following statement:

“We strongly encourage anyone who loses or wants to sell their phone to call Google Wallet support toll-free at 855-492-5538 to disable the prepaid card. We are currently working on an automated fix as well that will be available soon. We also advise all Wallet users to set up a screen lock as an additional layer of protection for their phone.”

So if you use Google Wallet, keep your eyes on your device (even more than usual), at least until Google fixes this problem.

Source: CNet

Did you find this useful? Share it with others

More articles about:

6 Comments


Yaara Lancet

Yaara (@ylancet) is a freelance writer, editor, and a tech blogger. She enjoys writing about anything thought-provoking (this very much includes food, buckyballs, and her iPad). Find her also at lnct.org.

Similar Stuff

Leave a comment

Get a MakeUseOf account using one of your online accounts below.
Why? Earn points, unlock giveaways, access locked exclusives.

Hide 6 Comments

  • Darren O'Connor February 12, 2012

    So obviously the responsible thing to do here is publicise a security hole all over the internet, right?

    Reply
    • Joel Lee February 12, 2012

      Yes, so people can be more precautionary? It’s not like MUO posted a step-by-step guide on how to hack Google Wallets.

      What is this, I don’t even…….

      Reply
    • Yaara February 12, 2012

      Of course, would you rather not know this is possible? I always prefer to know about security holes so I can be even more careful. 

      The people who actually want to use this maliciously are not looking at MakeUseOf as a source. They will find about these things whether we want to or not.

      And besides, publicizing it is the best way to get Google to fix it as soon as possible.

      Reply
    • Chris Hoffman February 12, 2012

      Sorry to pile on, but yes. It’s very responsible — Google has released some recommended steps users can take to increase their security. It’s important that Google Wallet users know this.

      I’m pretty disappointed in Google, though. This is something they should have thought of.

      Reply
  • Abhishek Prakash February 12, 2012

    That horrifying..

    Reply
    • Sonya February 12, 2012

      my classmate’s step-sister base pay is $85/HR ?? the internet .She has been unemployed for 9 m?nths ??? ???? ????? ??? ???????? was ($7597) ???? ??????? on the internet for a few ?????. Read more on this site CashLazy.com

      Reply