The researchers from the University of Birmingham and the University of Surrey discovered the fact that iPhone devices are able to confirm transactions under certain conditions.
Unfortunately, it can be considered that this method is similar to a digital version of pickpocketing, as it is able to function over the air even if the iPhone is in a bag or in someone’s pocket and there is no transaction limit.
How Does It Work?
Usually, in order for a payment to go through, an iPhone user needs to authorize it by unlocking the phone using the Face ID, Touch ID, or a passcode.
Unlocking the smartphone, however, might make the payment procedure more difficult for the user in specific situations, such as paying for public transit.
Apple Pay addressed the issue with Express Transit, a feature that allows a transaction to be completed without the device being unlocked.
Express Transit uses card readers that send a non-standard sequence of bytes to circumvent the Apple Pay lock screen for specialized services like ticket gates.
This feature can be leveraged to bypass the Apple Pay lock screen, and illicitly pay from a locked iPhone, using a Visa card, to any EMV reader,