Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Threat Intelligence

7/3/2018
11:40 AM
50%
50%

Consumers Rank Security High in Payment Decisions

Security is a top priority when it comes to making decisions on payment methods and technologies.

In the list of considerations for how to pay for purchases, the security of the transaction method tops cash back and loyalty points for most consumers. That's the conclusion of a recent major payment industry study, reinforced by separate results from new private research.

The "2017 TSYS U.S. Consumer Payment Study," the latest annual version of research conducted by the payments provider, indicates that security is a top-of-mind issue for the majority of consumers. Regarding a question about moving to electronic wallets on smartphones, the study reports, "Consumers continue to be most interested in mobile features that allow them to instantly identify and stop unauthorized credit and debit transactions," with 80% reporting this as a reason for pursuing wallet apps. The ability to instantly see transactions was cited as another reason by nearly three-quarters (72%) of respondents. Both of these responses outpaced any convenience-related justifications for the new technology.

Security for new payment technology is in line with a response from TSYS's 2016 study that found when considering a new credit card, 74% of consumers ranked security and fraud protection as their priority, with 26% preferring rewards.

The survey on which the study was based also asked consumers about their comfort level with different authentication levels. Traditional passcode was the top response, with 69% stating their comfort with the method, but fingerprint authentication was close behind, at 63%.

For more, read here and here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
OliverJ237
50%
50%
OliverJ237,
User Rank: Apprentice
8/3/2018 | 3:15:18 AM
Re: My own anecdotal evidence
The survey on which the study was based also asked consumers about their comfort level with different authentication levels. Traditional passcode was the top response, with 69% stating their comfort with the method, but fingerprint authentication was close behind, at 63%.https://www.allicdata.com
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
7/6/2018 | 11:34:48 AM
My own anecdotal evidence
I can speak to this personally.

I remember there was a VERY rare recording/album I wanted by a musical artist whose work is next-to-impossible to find. After months of searching (both online and IRL), I eventually came across a website that sold the artist's recording that I wanted -- a website for the music publisher with whom the artist worked.

Or so it purported to be. The website was in the Netherlands and looked pretty sloppily put together. I did not feel comfortable trusting my personal payment information on the site (I couldn't even be certain if the website was legit) -- so I simply went without.

In hindsight, the website was probably legit, but it still left a bad taste in my mouth.
COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/1/2020
9 Tips to Prepare for the Future of Cloud & Network Security
Kelly Sheridan, Staff Editor, Dark Reading,  9/28/2020
Attacker Dwell Time: Ransomware's Most Important Metric
Ricardo Villadiego, Founder and CEO of Lumu,  9/30/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-20902
PUBLISHED: 2020-10-01
Upgrading Crowd via XML Data Transfer can reactivate a disabled user from OpenLDAP. The affected versions are from before version 3.4.6 and from 3.5.0 before 3.5.1.
CVE-2019-20903
PUBLISHED: 2020-10-01
The hyperlinks functionality in atlaskit/editor-core in before version 113.1.5 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in link targets.
CVE-2020-25288
PUBLISHED: 2020-09-30
An issue was discovered in MantisBT before 2.24.3. When editing an Issue in a Project where a Custom Field with a crafted Regular Expression property is used, improper escaping of the corresponding form input's pattern attribute allows HTML injection and, if CSP settings permit, execution of arbitra...
CVE-2020-25781
PUBLISHED: 2020-09-30
An issue was discovered in file_download.php in MantisBT before 2.24.3. Users without access to view private issue notes are able to download the (supposedly private) attachments linked to these notes by accessing the corresponding file download URL directly.
CVE-2020-25830
PUBLISHED: 2020-09-30
An issue was discovered in MantisBT before 2.24.3. Improper escaping of a custom field's name allows an attacker to inject HTML and, if CSP settings permit, achieve execution of arbitrary JavaScript when attempting to update said custom field via bug_actiongroup_page.php.