I love that magstripe ATM transactions are disabled by default. Is there any way we could get this same protection for purchases as well (especially disabling fallback)?
P.S. on that same note also disable contactless magstripe emulation mode by default, obviously being able to turn this on when travelling.
P.P.S. what if we don’t want 24 hours of magstripe cloning vulnerability? It would be nice to be able to do single purchase within 10 minutes or something type authorisations. Also a good chance for merchant education at small businesses ‘oh yes, my bank declined it because your system is insecure so hang on, I have to tell them really quickly in the app it is okay and it isn’t a thief trying to use my card here.’ This might make small businesses where the owner is the one ringing you up think twice about their refusal to upgrade their old magstripe stuff.