Comment fail (Score 1) 162
When security measures involve trying to keep people quiet about its flaws, I think it's time to accept the security is broken!
Also, this paragraph of the UK Card Associations complaint letter attempts to downplay the effectiveness of the hack, looks to me like it's just there to deter anyone considering trying it.
Fortunately, the type of attack described in the research is difficult to undertake and is unlikely to carry a sufficient risk-reward ratio to interest genuine fraudsters. And, in the unlikely event that such an attack were to take place
Yeah right!