After the storm: Number26 clarifies what data is stored and transmitted via NFC

After causing quite a shitstorm a couple of days ago by blogging about the chattiness of their payment cards, Number26 has now release a document in their new support center. If they had communicated their card’s privacy settings (or their lack of)m from the beginning, no-one would have had a reason to be outraged. But Read More …

Revolut users can now Top-Up with their Number26 Mastercard

Almost a month ago, I was trying to top up my Revolut account with my Number26 debit card. The process could not be completed, because Revolut thought it would be a credit card and not a debit card. They have then claimed to have forwarded this to their payment processor, but after resolving my ticket, Read More …

Your Number26 Mastercard knows what you did last summer…

…And so does your Maestro Card. Just one week after reporting about a Man-In-The-Middle vulnerability of Number26, I was poking around a little more. Unfortunately, there is more negative findings to write about Number26. This time about their physical cards, the MasterCard and Maestro to be precise. So what is this all about? Every modern Read More …

Revolut: Not necessarily cheaper than an(y) other Mastercard *

* depending on your use pattern and the specific Mastercard you are using. Two weeks ago, I took my Revolut card and my wife to the Czech republic. This is the second attempt to write about that after my account got locked for no apparent reason. Me and my wife paid on multiple occasions with Read More …

“Number26 PushTAN” or “When transaction verification is impossible”

A couple of months ago, I have dug into the security precautions of the Number26 banking application for Android. The flaw explained in this post is so obvious that the cows go home. I am surprised if this has not been abused by an evil party yet. Still, I am going to explain it in Read More …