×

Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!

Square Debuts New Email Payment System

Soulskill posted about a year ago | from the all-about-the-benjamins dept.

The Almighty Buck 240

cagraham writes "Mobile payment company Square — best known for their smartphone credit-card swipers — has launched a new payment service called Square Cash. The service doesn't require users to sign up or make an account. Instead, they just email the person they'd like to transfer money to (with the amount as the subject), and CC 'cash@square.com.' Square asks the sender for their debit card info, and then sends a link to the recipient, who can transfer the money into any account they want within 1-2 business days."

Sorry! There are no comments related to the filter you selected.

Won't take off (1)

Anonymous Coward | about a year ago | (#45145435)

Sounds too complicated. Sorry, but think of the average moron.

Re:Won't take off (1)

Jeremiah Cornelius (137) | about a year ago | (#45145487)

Drug Deal!

Re:Won't take off, but may Rip You Off (4, Insightful)

icebike (68054) | about a year ago | (#45145733)

Drug Deal!

Except Drug Dealers don't keep Bank Accounts. Its a cash and you are carrying business.

This requires you to give Square Your debit card info, and makes your recipient give you THEIR bank details.
Seriously, the NSA couldn't have dreamed up a move invasive scheme. What could possibly go wrong with that?

Left unsaid in the linked article, (and also the Square website) is how square is going to monetize this, other than by
*cough* losing one out of a hundred payments. They claim the service is free. FAQ Here [squareup.com] to both parties. So, how do they finance that, other than getting a piece of the debit card fee? (Senders have to use a Debit card).

One wonders just how much the debit card fee is jacked up to allow Square to assume the risk for this type of service, and handle the deluge of complaints and lost payments claims. And how many will be suckered into handing over their bank info to a 419 email purportedly from Square.

World Plus Dog is rushing to mobile payments, but I'm not so sure this is well thought out.

Re:Won't take off, but may Rip You Off (1)

surmak (1238244) | about a year ago | (#45146013)

They claim the service is free. FAQ Here [squareup.com] to both parties. So, how do they finance that, other than getting a piece of the debit card fee? (Senders have to use a Debit card).

The get the 1-2 days of float on the translation. That may be enough to enable them to make a little profit.

Re:Won't take off, but may Rip You Off (1)

cayenne8 (626475) | about a year ago | (#45146129)

One wonders just how much the debit card fee is jacked up

Thankfully...I don't have/use a Debit Card. I ask my bank for a plain, simple non-debit ATM card.

I use that when I need cash to carry around for the week...and I'm good to go.

I still prefer the anonymity of cash, and since it doesn't abstract the spending of your money (much like chips in a casino)...I have a better feel where my money is going every week for living expenses (groceries, etc).

Re:Won't take off, but may Rip You Off (1)

shaitand (626655) | about a year ago | (#45146179)

Square requires your debit card info and SQUARE gets the recipients bank account details not the guy paying.

Re:Won't take off (2)

reboot246 (623534) | about a year ago | (#45145749)

I know a lot of people who have the bad habit of sending everything to everybody in their contact list. Wouldn't it be funny if they sent money to dozens of their friends by mistake, and then those friends cc (they never use bcc) to everybody in their contact list and so on?

Ummmm... (5, Insightful)

Anonymous Coward | about a year ago | (#45145443)

This has got to be the most insecure payment system ever.

Re:Ummmm... (1)

Catskul (323619) | about a year ago | (#45145521)

How so?

Re:Ummmm... (4, Informative)

Russ1642 (1087959) | about a year ago | (#45145647)

You shouldn't send that kind of account info by email.

Re:Ummmm... (4, Informative)

Catskul (323619) | about a year ago | (#45145741)

You don't send account info via email. Read the article, or even just the summary more carefully.

Re:Ummmm... (0, Flamebait)

Russ1642 (1087959) | about a year ago | (#45145793)

The summary makes it seem like it's all done over email. Why would I read the article? Nobody does that.

Re:Ummmm... (1)

Catskul (323619) | about a year ago | (#45145989)

You don't actually need to read the article. The summary suggests that all that goes in the email is the amount, and the CC to cash@square.com.

Instead, they just email the person they'd like to transfer money to (with the amount as the subject), and CC 'cash@square.com.' Square asks the sending for their debit card info, and then sends a link to the recipient, who can transfer the money into any account they want .

Re:Ummmm... (0)

Russ1642 (1087959) | about a year ago | (#45146111)

Instead, they just email the person they'd like to transfer money to (with the amount as the subject), and CC 'cash@square.com.' Square asks the sending for their debit card info, and then sends a link to the recipient, who can transfer the money into any account they want .

Looks to me like they ask for the debit card info by email. But that's apparently not what they do so whatever.

Re:Ummmm... (3, Insightful)

suutar (1860506) | about a year ago | (#45145859)

anyone who can intercept the email from square to the recipient can use the link, unless there's a lot more validation than they're mentioning.

Re:Ummmm... (3, Funny)

NatasRevol (731260) | about a year ago | (#45146139)

The NSA can finally finance all the email spying they're doing!

email? (0)

Anonymous Coward | about a year ago | (#45145447)

I thought all the kids these days were shunning email.

Really? (4, Insightful)

mcmonkey (96054) | about a year ago | (#45145451)

Account details over email and 1-2 business days?

Why not just put cash in an envelope and send USPS? At least that way you can't lost more than the cash you send.

Re:Really? (4, Informative)

Anonymous Coward | about a year ago | (#45145541)

You don't send your account details in the email. They give you a link where you go to provide the details.

Re:Really? (5, Insightful)

Anonymous Coward | about a year ago | (#45146011)

Sounds like an easy way to do a phishing scam.

Re:Really? (1)

Catskul (323619) | about a year ago | (#45145617)

You like dealing with physical mail, and cash? Good for you. Most people don't.

Re:Really? (0)

Anonymous Coward | about a year ago | (#45145661)

You like dealing with physical mail, and cash? Good for you. Most people don't.

I appreciate the implication of your response, in that you consider "dealing with physical mail" to be a far worse idea than "sending account details over email". Because as we all know, the latter might be insecure and horribly open for abuse, but the former is haaaaaaard, so let's go shopping. Er, I mean, let's trust TEH DIGITALZ for everything, implicitly.

Re:Really? (0)

Anonymous Coward | about a year ago | (#45145819)

You don't send account details over email.

Re:Really? (1)

Anonymous Coward | about a year ago | (#45145623)

Account details are sent over HTTPS, not e-mail. It's not specified in their information, but other articles on the subject say Square e-mails you a link asking for your debit card information the first time you send or receive money using the service.

On the other hand, it's unclear how they deal with e-mail spoofing. Maybe they just trust their anti-fraud enough and enough domains are using anti-spam techniques that happen to also prevent spoofing.

Re:Really? (0)

Anonymous Coward | about a year ago | (#45145639)

Some reading comprehension issues here.

I always though the grade school reading comprehension tests were silly; why would anyone have trouble with this, I thought. Well, here you go.

Re:Really? (4, Informative)

ljw1004 (764174) | about a year ago | (#45145735)

RTFA. "If this is your first time using the service, Square will email you a link to its service, where you’ll be asked to enter your debit-card information."

Re:Really? (1)

icebike (68054) | about a year ago | (#45145817)

Exactly.

You have to have an inordinate amount of trust in Square to use this service from EITHER end.

Sender hands over Debit Card info.
Receiver hands over BANK Account info.
Really?

Much as people love to hate PayPal, their process is more reliable.
Paypal offers a Paypal balance backed Debit Card if you want to fund the kid at college without
co-signing a credit card application.
Even Google will transfer money for you these days.

Re:Really? (2)

suutar (1860506) | about a year ago | (#45145909)

Keep in mind, Square's been doing "sender of money hands over card info, recipient of money hands over bank account info" for years. It's just that the recipient set up the account first and then met the sender face to face.

Re:Really? (1)

shaitand (626655) | about a year ago | (#45146237)

Both the sender and recipient have to provide their information to Paypal and Google for their services as well.

The law is set up in such a way that all money exchangers are required to get identifying information from you. But even if they weren't, you have to provide a source and destination for the funds to get them in and out of the service.

Re:Really? (5, Interesting)

hawky (14175) | about a year ago | (#45145905)

We tried it. My co-worker sent me $15. After the initial email, we both tied our debit cards to our email addresses, and I had the funds in my account in less than 5 minutes. Since our cards are now linked I imagine it will be even quicker in the future.

Re:Really? (3, Interesting)

pepty (1976012) | about a year ago | (#45146331)

Were there debit card fees from the banks, etc?

Perl, gotta love it. (-1)

Anonymous Coward | about a year ago | (#45145471)

Stuff that matters.

Interac (5, Interesting)

neoform (551705) | about a year ago | (#45145489)

Isn't this exactly the same thing as an Interac e-Transfer [wikipedia.org] ?

I've been sending money via email for many years this way.

Re:Interac (2)

aclarke (307017) | about a year ago | (#45145535)

That's because you're Canadian (I assume). Try to think like an American, because they don't use Interac.

Re:Interac (1)

neoform (551705) | about a year ago | (#45145695)

I guess I never really noticed that this was a Canadian specific thing. Seems I wrongfully assumed the US banking system had something similar.

Re:Interac (3, Interesting)

Catskul (323619) | about a year ago | (#45145601)

There are many systems like this including POP money. The difference AFAICT is that this does not require bank participation.

Re:Interac (2)

LikwidCirkel (1542097) | about a year ago | (#45145705)

From the summary: "Square asks the sending for their debit card info..."

That sounds like bank participation to me.

Re:Interac (2)

Catskul (323619) | about a year ago | (#45145753)

The bank doesn't need to sign up for a special program a la the OP's suggestion of Interac e-Transfer. It just uses your debit card functionality.

Re:Interac (2)

icebike (68054) | about a year ago | (#45145957)

From the summary: "Square asks the sending for their debit card info..."

That sounds like bank participation to me.

Further, Square asks the Recipient for their bank account info.
That sounds even more like bank participation. Willingly or not.

How many people are going to receive an email purporting to be from Square offering an amount of money
which will give them a link to click to post their bank account details, directly into a website run by some 419 scammers?

Re:Interac (1)

Anonymous Coward | about a year ago | (#45145757)

And the fact that it takes around 1-2 hours to complete the transfer, not days.

What could possibly go wrong? (4, Interesting)

Shirogitsune (1810950) | about a year ago | (#45145491)

Obviously this is a front for the NSA so they can get rid of the traditional means of tracking bank transactions and just lump it all into the haystacks of email data the already collect! Government efficiency at it's finest! Brilliant!!

Sounds ready for abuse (5, Insightful)

Anonymous Coward | about a year ago | (#45145493)

So the From:, Subject, To:, and Cc: headers are what makes this work?

Not a bad idea, really, except that it can all be trivially spoofed, and the resulting set up/confirmation emails can be trivially intercepted and abused at will. Plus, of course, no easy drop-in encryption, and in the end it piggybacks on existing systems, so all the risks associated with them (like credit cards) will be neatly folded into the deal too.

Re:Sounds ready for abuse (0)

Catskul (323619) | about a year ago | (#45145589)

Virtually everyone has secure communication to their email provider these days. This is no more abusable than password resetting links that are regularly used for sensitive accounts.

Also I'm not sure if you caught that account numbers will not be transferred by mail.

Re:Sounds ready for abuse (1)

myspys (204685) | about a year ago | (#45145699)

And spoofed headers don't exist...

Re:Sounds ready for abuse (2)

Minwee (522556) | about a year ago | (#45145847)

Good point, but all that would do is prompt a confirmation request to be sent back to the "sender", who is either going to realize that he didn't initiate that transaction, or has already given all of his money away to a very helpful friend in Nigeria.

Either way, you won't be able to fake a complete transaction through Square, who really should have stuck to Final Fantasy instead of trying to reinvent the Interac e-Transfer.

Re:Sounds ready for abuse (0)

Anonymous Coward | about a year ago | (#45145829)

Virtually everyone has secure communication to their email provider these days.

Your average techie feels that everyone should have this by now, but that does not mean it isn't wishful thinking.

Even if it was "in the main" true, that's still not an assumption you can safely make and expect to hold strongly enough to bet your customer's data (and money) on. It is only but one link in the entire chain, and I don't just mean that the SMTP involved might fail to be secured somewhere. Trojans are popular these days and open up multiple ways of going after this, too. And so on.

This is no more abusable than password resetting links that are regularly used for sensitive accounts.

I'm not sure that's a valid security bound; being in wide use itself is not proof of security. It might not nearly be good enough for this purpose, and a lot more money might be riding on this. Who is carrying which risk, exactly?

Also I'm not sure if you caught that account numbers will not be transferred by mail.

That doesn't necessarily mean anything. Suppose the service is exactly that numbers need not be transferred over email. So manipulate the service itself instead--easy, especially if you can somehow control the originating email account you're good to go. If it turns out easy enough, we might even see botnets sign up their victims to this service for their convenience.

Re:Sounds ready for abuse (0)

Anonymous Coward | about a year ago | (#45146185)

I would venture that you work for Square and have been assigned as the "Stop /. from giving this cool new feature a bad name" consultant.

Re:Sounds ready for abuse (2)

hawaiian717 (559933) | about a year ago | (#45146251)

Virtually everyone has secure communication to their email provider these days.

And virtually nobody has secure communication between email providers. So there's a good chance that at some point along the line, your email is being transmitted across the Internet in the clear. Secure IMAP/POP/SMTP is good for protecting your authentication credentials (password), but if you want to protect the contents of your email, you need an end-to-end solution like PGP or S/MIME.

Re:Sounds ready for abuse (0)

Anonymous Coward | about a year ago | (#45145863)

Yeah this seems ripe for abuse.

Hey I'm trying to send you money! Just click on this link!

What could possibly go wrong... (0)

Anonymous Coward | about a year ago | (#45145499)

Request for debit card information over e-mail. What could possibly go wrong?

Blame Canada (1)

guytoronto (956941) | about a year ago | (#45145509)

We've been able to do this in Canada for quite a while now using Interac e-Transfer. http://www.interac.ca/en/interac-etransfer/etransfer-detail [interac.ca]

It's incredibly convenient, and only takes a few hours to transfer funds.

Re:Blame Canada (1)

c-A-d (77980) | about a year ago | (#45145603)

I won't use it. Sending secure banking information over insecure email doesn't really do it for me.

Re:Blame Canada (2)

guytoronto (956941) | about a year ago | (#45145641)

It's not secure banking information over email. The email contains a link that takes you to a redemption site. No sensitive information is in the email. Everything is contained on secure servers - just like your bank account.

Re:Blame Canada (2)

LikwidCirkel (1542097) | about a year ago | (#45145649)

No banking information is sent over email with Interac E-Transfer. That would be dumb. The recipient only gets a link and a user-chosen hint for a one-time password. In most cases, one can simply enter a bogus hint and tell the recipient the password over a more secure channel, like face-to-face.

Re:Blame Canada (1)

Russ1642 (1087959) | about a year ago | (#45145675)

In that case you don't send anything insecure over email other than a link to the interac site. You also set up a password that you share with the receiving party by phone or some other method.

Re:Blame Canada (1)

Garridan (597129) | about a year ago | (#45145739)

RTFS. You only send the amount. Who you're paying and how much is insecure, but when you get an email from Square, they send you a link where you put in your bank info.

Of course, this will spawn a cottage industry of phishers, but you shouldn't worry about phishing -- you're already paranoid. Worry about your grandma getting phished.

I want CASH Now ! (1)

Anonymous Coward | about a year ago | (#45145515)

I think they have underestimated the desire for instant gratification.

unless of course they can make the recipients phone immediately make some noise designed to invoke an involuntary Pavlovian response

Bitcoin (4, Informative)

Austrian Anarchy (3010653) | about a year ago | (#45145523)

I still prefer the Bitcoin schemes. Now, if I only had some bitcoin to toss around :(

Re:Bitcoin (1)

PRMan (959735) | about a year ago | (#45145769)

Why would you get rid of your precious bitcoins this week when they are going up, up, up. Meanwhile, the US dollar may be in trouble really soon...

Re:Bitcoin (1)

Anonymous Coward | about a year ago | (#45145921)

If you think BTC are more likely to be worth more relative to USD than less very soon, and you have USD that you don't need, then why haven't you traded your USD for BTC?

Exchange cost (1)

tepples (727027) | about a year ago | (#45146137)

Probably because someone doesn't think BTC is going to go up enough to offset the cost of wire transfers in and out of the USD-BTC exchanges.

Re:Bitcoin (0)

Anonymous Coward | about a year ago | (#45146037)

Hilarious if you think that the US economy is going to go down the toilet but a bunch of nerds running computers attached to the internet are going to be "going strong" afterwards.

I don't understand how this is new. (2)

LikwidCirkel (1542097) | about a year ago | (#45145527)

If they charge you by debit, the assumption is that you need a bank account somewhere. Most bank accounts already allow one to send an "Interac E-Transfer" to any email address for a relatively low fee. I've done it multiple times. Maybe it's just a Canadian thing.

Why would I want to introduce a third party into this, when I can already do it through my existing bank?

Re:I don't understand how this is new. (1)

LikwidCirkel (1542097) | about a year ago | (#45145559)

Even worse, is that the summary claims "1 to 2 business days". Interac E-Transfers take minutes.

Re:I don't understand how this is new. (1)

metrix007 (200091) | about a year ago | (#45145657)

That's only in Canada. Not the US.

Re:I don't understand how this is new. (0)

Anonymous Coward | about a year ago | (#45145665)

Person-to-person transfers in the US banking system are a pain. In practice, I either (1) just use cash, (2) use PayPal (ick), or (3) use my bank's "mail a check" feature... which the person on the other end will likely take a photo of and use their bank's "upload a check image" feature.

Re:I don't understand how this is new. (0)

Anonymous Coward | about a year ago | (#45145839)

Interac E-Transfer is only available in Canada and is almost exactly the same. Interac E-Transfer is a third party.

So can I send myself an email? (3, Interesting)

gameboyhippo (827141) | about a year ago | (#45145575)

What's stopping Eve from sending herself an email from a novice computer user and having said user give out their card info? Since anyone can send an email using any email address, this feels problematic.

Re:So can I send myself an email? (1)

ImprovOmega (744717) | about a year ago | (#45145775)

It certainly opens up the door for phishing scams where you spam Square with spoofed header transfer requests and hope that some percentage of people who get the legit emails from Square fill out the form and complete the transfer. But in and of itself it is not any more risky that Paypal or giving out your credit card info over SSL to a trusted company.

Re:So can I send myself an email? (1)

Garridan (597129) | about a year ago | (#45145843)

Said novice computer user would probably be like 'who is this Eve person and why does this strange website want my credit card info?!?' and trash the email. The more likely targets are the semiliterate, who are familiar with the service. They'll fall for the "pay $3 and I'll send you $100!" bullshit, get greedy, and give their credit card to a non-genuine site without noticing. Or... straightup fall for the "pay $3 and I'll send you $100" bullshit and give their credit card to the completely genuine and complicit Square, and never report it 'cause they're embarrassed about getting duped.

Wait.... (2, Insightful)

Kenja (541830) | about a year ago | (#45145587)

So all I need to do is email some anonymous database my credit card information? What could go wrong?

Sorry, what? (2, Insightful)

gstoddart (321705) | about a year ago | (#45145611)

And why on Earth would I trust Square?

See, banks have mechanisms in place to do this. And banks are regulated.

Square wants to become a middle-man for these transactions, but they aren't a bank and aren't regulated like one.

Which means when (not if) Square fucks up, you'll be dealing with a company in terms of their EULA which says "we're not a bank, and not actually responsible for anything". With a bank you have some recourse.

Given how video game companies have been faring with security and protecting of this kind of information, my first thought is "how long before they have a security breach, and what recourse will you have".

Sorry, but I'll stick with using banks to transfer money.

Re:Sorry, what? (4, Informative)

ImprovOmega (744717) | about a year ago | (#45145807)

From what I understand Square is a credit card processing service, which means they fall under certain other regulations. Not quite the same as banks, but certainly not out in the wild west as far as regulations go. I've known several small business owners who used them for credit card payments for a while now and both owners and customers seemed happy enough with the results.

Squaresoft (1)

tepples (727027) | about a year ago | (#45146233)

Given how video game companies have been faring

From what I understand Square is a credit card processing service

I think it might have been a pun on Square Enix, the company behind Rad Racer and Chocobo Racing.

Re:Sorry, what? (1)

Anonymous Coward | about a year ago | (#45145899)

... And banks are regulated.

Ahahahahahahaha! Man, that was a good one!

Re:Sorry, what? (3, Insightful)

SydShamino (547793) | about a year ago | (#45146097)

So when you go to a store to buy something, you ask the guy behind the register to follow you to a bank to complete the transaction?

No, I didn't think so. Instead, if you don't use cash everywhere, you probably hand the guy behind the register your credit card. If his register looks iPad shaped (and, in my experience, any new business that has opened in the past two years has registers that are distinctly iPad shaped), then he's processing your credit card through Square or a similar service. So you already trust them.

Ridiculous that it takes a 3rd party (4, Informative)

metrix007 (200091) | about a year ago | (#45145643)

Why does the US have such an antiquated banking system? Hell, a lot of places still need checks because they won't take plastic!

I've had bank accounts in the UK, Australia, Germany, Canada and the US.

Canada is basically the US in this context..banks are no better. They do have email money transfers though.

Which is something every other damn country has. A way to transfer money between bank accounts of individuals securely and free. The only option in the US has been paypal or chase quickpay.

Not to mention the reliance on checks (ridiculous!) and the problems with ACH fraud. Again, in no other country has my account number been secret information which I have to protect. The worst thing people could do is put money into my account.

So many issues....

Re:Ridiculous that it takes a 3rd party (1)

Antipater (2053064) | about a year ago | (#45145759)

Hell, a lot of places still need checks because they won't take plastic!

What part of the US are you visiting? Even traveling food trucks take plastic nowadays, unless you're out in the middle of the Carolina High Desert or the Kentucky Jungles or someplace.

Re:Ridiculous that it takes a 3rd party (2)

metrix007 (200091) | about a year ago | (#45145813)

I've lived in the US for some time, based in NYC.

There are still a lot of places that won't take plastic. Rental agencies, for instance.

Re:Ridiculous that it takes a 3rd party (1)

SydShamino (547793) | about a year ago | (#45146123)

What are you trying to rent? I've rented everything from cars to tuxes using a credit card, never cash. The only rentals that I imagine are a cash-only service involve illicits. NYC is different from the rest of the country. Here in Texas, even the taco trucks take credit card (alongside U.S. cash, and sometimes pesos).

Re:Ridiculous that it takes a 3rd party (1)

Anonymous Coward | about a year ago | (#45145765)

Planet Money just covered some of these issues on their show.
http://www.npr.org/blogs/money/2013/10/04/229224964/episode-489-the-invisible-plumbing-of-our-economy

Re:Ridiculous that it takes a 3rd party (0)

Anonymous Coward | about a year ago | (#45145785)

Not to mention the reliance on checks (ridiculous!) and the problems with ACH fraud. Again, in no other country has my account number been secret information which I have to protect. The worst thing people could do is put money into my account.

So many issues....

It doesn't have to be secrete in the US either. In fact, your account and routing numbers are on every check you write.

Re:Ridiculous that it takes a 3rd party (1)

PRMan (959735) | about a year ago | (#45145799)

Because the banks are used to getting massive fees and delaying all payments for 3 days. Why should they change anything?

Re:Ridiculous that it takes a 3rd party (0)

Anonymous Coward | about a year ago | (#45146229)

I live in about as backwoods a city as exists in the North: Indianapolis.

I haven't written a check in over a decade. I use my check card for everything, instead, or EFT (Popmoney) via my bank's website for the couple times a year I need to email someone some money.

Want to bitch about banking? Go visit Japan on vacation. It's an eye-opener.

Re:Ridiculous that it takes a 3rd party (0)

Anonymous Coward | about a year ago | (#45146239)

As I understand it the reason many businesses don't take CC's is that there is a fee for each transaction, and from what I've heard it is steep. I would assume that is the reason many take cash or check only.

Subj: $lots From: you To: me CC: these launderers (1)

Joining Yet Again (2992179) | about a year ago | (#45145653)

Thanks for all the money, folks!

So? (0)

Anonymous Coward | about a year ago | (#45145681)

Chase has QuickPay. Venmo exists.

What's the big deal.

Interesting angle ... (2, Funny)

Anonymous Coward | about a year ago | (#45145783)

Interesting idea that Square have come up with.

This will only be their first step. The next goal will be to have all transactions take place using their own currency denomination, Gil (G). From there, they can bypass the online gambling ban and provide real-time Chocobo Racing streamed into the home.

Re:Interesting angle ... (0)

Anonymous Coward | about a year ago | (#45145911)

BWAHAHAHA! Seriously, this AC needs a funny mod.

Training users to click on links in their inbox (5, Insightful)

Floyd-ATC (2619991) | about a year ago | (#45145869)

How many times must people be hit in the head with a clue bat before they understand that this is a Bad Idea[tm]

Re:Training users to click on links in their inbox (4, Interesting)

Animats (122034) | about a year ago | (#45146259)

How many times must people be hit in the head with a clue bat before they understand that this is a Bad Idea[tm]

Big companies are encouraging this, by sending emails that meet all the criteria for phishing emails. I just got a receipt email from Virgin Mobile after making a payment. The path taken by the mail goes through "mh.nextel.m0.net", "oms16.dc1.prod" (which isn't even a valid TLD), and "cmil278.amdocs.com". The mail text is base-64 encoded HTML only, no text version. That just screams "hostile code".

How are people supposed to recognize phishing emails with legit companies sending crap like that?

"m0.net" says on their site "This domain is owned by Acxiom Digital, a leading provider of email marketing solutions for Global 2000 enterprises."

Open Relays FTW (5, Funny)

Fenixfyre42 (993575) | about a year ago | (#45145929)

telnet random.openmailrelay.com 25 HELO victim.domain.com MAIL FROM: victim.email@victim.domain.com RCPT TO: dummy.prepaid.card.email@badguy.com DATA CC: cash@square.com SUBJECT: $1,000,000 Here is the payment I promised. . QUIT Profit!

Re:Open Relays FTW (2)

SydShamino (547793) | about a year ago | (#45146149)

So when victim.email@victim.domain.com is asked to validate that he wants to send $1,000,000, and is asked to provide a debit card for the transaction, he'll go along with it because the email says he originated the request?

A Phisher's Delight! (1)

Slashdot Parent (995749) | about a year ago | (#45145933)

To use this system, I get an email, purportedly from Square, asking me for my debit card information. What could possibly go wrong?

And could someone please tell me why we can't just do bank-to-bank transfers like they do in Europe? We're getting closer now. Through B of A, I can send money to a phone # or email address (is this just PopMoney?), but I've never tested the UX on that to see if it's a pain in the ass for the recipient.

Sorry. (1)

fahrbot-bot (874524) | about a year ago | (#45146025)

I don't have a debit card - and never will. They're evil, and unnecessary/stupid for people that have a CC and pay it off every month...

Re:Sorry. (1)

SydShamino (547793) | about a year ago | (#45146161)

You can't get cash for free out of your credit card. You can at almost every store that takes debit cards, for no extra effort or fee.

I have sent you $50! (3, Informative)

TheSpoom (715771) | about a year ago | (#45146073)

Simply click this link and input your debit card details! I promise nothing bad will happen.

Gmail has started to roll this out too. (1)

oOkathyOo (625804) | about a year ago | (#45146211)

Starting this past May or so, many Gmail users received a new "Attach Money" option that lets them send money through a Gmail email. It's integrated with their Google Wallet, which stores credit card info and uses that for payment. You can see more details at: https://support.google.com/mail/answer/3141103?hl=en [google.com] I saw the "attach money" option appear just last month for me, while composing a new email. It seems a lot more convenient than registering for a new Square account and using their strange "subject and cc" method. I'd expect the Gmail version to be much more likely to catch on than this Square one.

Re:Gmail has started to roll this out too. (0)

Anonymous Coward | about a year ago | (#45146287)

"It's free to send money using your Google Wallet Balance or your bank account linked to Google Wallet. To send money using your credit or debit card, there is a flat fee of 2.9% per transaction (minimum $0.30)."

Load More Comments
Slashdot Login

Need an Account?

Forgot your password?