Subscribe to web2feel.com
Subscribe to web2feel.com

All Top Banking

HomeATM Still Waiting To Hear From ATMDirect Regarding "PIN-Off"

Posted by John B. Frank Monday, April 14, 2008 0 comments

In the wake of the Airlines Industry having just become aware that a credit card processor can (and will) dictate that 100% of an airlines credit card based revenue can be withheld, it has become more than obvious that Internet PIN Debit will not only "fly" but will become "air apparent" to the current web transaction space. HATM is more than ready to "earn it's wings".

I am aware how both ATMDirect and HomeATM's Internet PIN Debit solutions work. As a founding member of Pay By Touch, from which Acculink procured ATMDirect, I am privy to specific details driving ATMDirect's solution.

After seeing and learning more about HomeATM's Internet PIN Debit Solution, I am convinced that HomeATM's technology is the strongest of these two.

I am interested in bringing more publicity and thus awareness to PIN Based Internet Transactions. For that reason, when HomeATM, last week, suggested challenging ATMDirect to an industry sponsored showdown which was dubbed by Ken Mages, HomeATM's CEO and Founder, as a "PIN-OFF," I thought it was a brilliant way to drum up some exposure towards furthering the cause of PIN Debit for the Internet.

Of course, it also occurred to me that this was analagous to an old-fashioned duel, ala the Old Wild West...and not unlike the Wild West, this duel may leave only one man (technology) standing.

According to Ken Mages, CEO and Founder of HomeATM, HATM is entirely more than willing to have this so-called "PIN Off" supervised by a knowledgeable, non-partisan entity(ies).

As I mentioned in last weeks blog posting, entitled "HomeATM Officially Challenges ATMDirect to a "PIN-Off," one suggestion (among many) as a "fair and balanced" technological judge/arbitrator was John Stewart" the Editor in Chief of Digital Transactions Magazine. With that said, HomeATM would welcome any and all highly respected industry veteran(s).

Strong candidates might include highly regarded Gartner Research analyst Avivah Litan, Aite Research Director and Analyst, Gwenn Bézard, Glenbrook's Payments News Editor Scott Loftesness, The GreenSheet's President and Founder, Paul Green and/or Internet Retailer Magainzes Publisher, Jack Love.

However, HomeATM is willing to invite any and all analysts to form an "Internet PIN Debit Payments Panel." and oversee the "PIN-Off"

As I see it, the panel's primary function would be to subject both HomeATM's and ATMDirect's methodologies to whatever rigorous tests they may wish to institute to verify how it works, that it works, how secure it is and how quickly the transaction is transacted.

Of course, all I'd ask is that results of these tests be shared (publicly) including each "analysts independent findings" upon the conclusion of conducting these "objectively unbiased analysis".

Say again? Okay. HomeATM is willing to showcase the HomeATM technology to a professional unbiased payments panel...and ATMDirect would be and hereby "is invited" ...to do the same. The results of the evaluation will be public domain.

Will you, ATMDirect accept PIN Debit ? As I posed last week, I think the real question is: Can ATMDirect accept,? If so, will ATMDirect be able to do so "securely" without any glitches? That is the gist of the challenge. My personal belief is the PIN-Off" might be too "Rocky" a road for them to travel. My educated guess is they may want to avoid having their technology subjected to independent analysis as it may die from exposure.

However, I've been known to be wrong before, so...ATMDirect, prove me wrong! If you don't think that HomeATM would "PIN U" into the proverbial corner, feel free to accept the invitation to an offical PIN Off by emailing me at: ATMDirect Hereby Accepts.

We would love (and are anxiously waiting) to hear from you ATMDirect...just accept the challenge sometime within the next 30 days. and we'll make arrangements for the PIN-Off. As a friendly reminder look for the "PIN-Off" Countdown Widget at the top right of this blog!

And every day for the next 30 days, I will let you know if I've yet to hear from or receive an acceptance of the invite to a "PIN Off" from ATMDirect.

You said in your "Press Release" that you will "Own PIN Debit on the Internet," so let's at least see you "Own Up to This Challenge".

I'll be waiting...

External Links to this Post:
www.allpaynews.com
http://www.huliq.com/


Full Story

Mayday! Mayday! Mayday!

Posted by John B. Frank Sunday, April 13, 2008 0 comments

Yesterday I mentioned that card processor First Data told Frontier they would withhold 100% of their credit card processing fees... starting, May 1st, which ironically is also known as May Day! (Venez m'aider for my Canadian friends!)

The airline industry should see this movement as not only the distress signal that it is, but also a sign of things to come if they don't prepare a plan that protects them from being held, dare I use the word?, "hostage" by credit card processors.

One such plan would include further instituting and utilizing HomeATM's PIN Debit Platform which would eliminate reserves in their entirety and lower their card processing costs significantly.

Today I bring you an article from the Denver Post. Should you desire to do so, click this link which will bring you to thei DP's site where you can read related articles, including comments from readers about this very interesting and "still developing" fiasco.

Here's the story...

Frontier Airlines pointed the finger of blame directly at First Data Corp. for its bankruptcy filing Friday. Greenwood Village-based First Data responded with regrets that "economic conditions" forced the Denver-based airline into reorganization, but otherwise kept quiet.

So how did the two hometown corporations get into a stand-off that will have to be settled in bankruptcy court? Credit-card processors like First Data will ask merchants for more collateral to protect themselves when financial conditions deteriorate. Those same financial stresses, however, make a merchant less able to meet those demands — what some observers call a formula for ankruptcy.

'It happens regularly, particularly with the small and low cost carriers who have so much of their revenues tied up in credit-card transactions to begin with," said Jack Williams, a resident scholar at the American Bankruptcy Institute

Demands from credit-card processors are often the untold story behind many bankruptcies, Williams said, which makes Frontier's public outing of a company it needs to survive so unusual.

When consumers make a credit-card purchase, they have a guarantee from Visa and MasterCard to cover things like defective goods or undelivered services. Merchants get paid quickly even if the actual delivery takes place months later — say an airline or cruise ticket purchased in April for a trip in August. Although Visa and MasterCard offer the guarantees, credit-card processors are on the hook if merchants can't make good. Potential losses can be several times beyond any profits generated.

To protect themselves, credit-card processors require merchants to maintain a reserve, usually funded by holding back a certain percentage of the credit-card receipts they collect. "They are underwriting the risk. They are the ones who will be stuck if the merchant goes down," said Adil Moussa, an analyst with Aite Group, a Boston research firm.

Frontier maintained a $54.5 million credit-card deposit with First Data and one of $18.5 million with American Express, according to the company's bankruptcy filing. Frontier got news in letter Frontier reported that First Data sent it a letter Tuesday lifting the reserve requirement to $130 million. Until Frontier met that higher cap, First Data said it would hold back half of the company's credit-card revenues.

That First Data requires reserves is standard industry practice, and it's also standard to raise them when risks increase, said Jim Daly, a senior editor with Digital Transactions, an industry trade publication.

But lifting reserve requirements sends a loud distress signal to the market. "A 50 percent holdback signals all creditors that it is a serious financial situation and you have an impending bankruptcy," Williams said.

Unable to survive on half rations of cash flow for any length of time, Frontier sought bankruptcy protection. While holdbacks can trigger a bankruptcy filing, they aren't the "cause."
But Moussa questions whether First Data could have handled things differently. "One can't help but wonder if First Data is overreacting and really pushing one of its customers toward bankruptcy," Moussa said. And what happens if all credit-card processors respond to a rash of four airline failures by raising reserve requirements on all carriers, he asks. "It might just be the nail on the coffin for the already ailing industry," he said.

First Data faces pressures of its own. Kohlberg Kravis Roberts & Co. acquired the once public company in a leveraged buyout last fall, lifting the debt on its balance sheet from $2.5 billion to more than $22 billion. For 2007, First Data recently reported revenues of $8.1 billion and a loss of $907 million. That compares with revenues of $7.1 billion and a net income of $1.5 billion in 2006.

How First Data deals with merchants is somewhat mechanical, not unlike bank debt covenants, and entirely contractual. But Williams wonders if the entire credit crunch hasn't made all financial players much more fearful, a little quicker to pull the trigger when things turn south.

Despite any public posturing, Frontier and First Data are expected to reach a compromise as quickly as possible and their lawyers are reportedly already talking. The bankruptcy filing also blocks First Data's plans to hold back credit-card revenues. "It is to everyone's benefit to work this out quickly. I'm talking days. It won't go weeks or months," Williams said.

Full Story

HomeATM Blog "Week in Review"

Posted by John B. Frank Saturday, April 12, 2008 0 comments
Full Story

Airlines Can Have 100% of Their Credit Card Transactions Withheld!

Posted by John B. Frank 0 comments

The credit card processor cited in Frontier Airlines' decision to file for Chapter 11 bankruptcy, on Friday issued a statement defending its actions. "We regret that the current economic conditions have led to today's bankruptcy filing by Frontier Airlines," Greenwood Village-based First Data said in the statement.

First Data informed Frontier that it would withhold 100 percent of the Denver-based carrier's credit card transactions beginning May 1, said Joe Hodas, spokesman for Frontier. "There was no advance warning," Hodas said. "This has all transpired in the last three days.

Previously, First Data held back 45 percent of the low-cost carriers credit card sales receipts.

The feeling is that Chapter 11 is going allow us the ability to straighten out these financial issues under the protection of the bankruptcy court so that we can emerge a stronger and more long-term viable airline." But First Data downplayed its role in the situation. "First Data, with our bank partners, processes transactions for a variety of businesses around the world," First Data officials said in a statement. "We continually monitor and manage the credit risks associated with processing transactions in industries where we provide services.

Editor's Note: Here's the scary part for the Airline Industry. Withholding 100% of credit card transaction revenue is apparently considered "standard practice".
The terms of our agreement with Frontier Airlines are not unique; they are considered standard industry practice and terms originally agreed upon by Frontier.
Frontier Airlines is the second-largest airline operating out of Denver International Airport. In 2007, Frontier carried roughly 22.7 percent of passenger enplanements at DIA. The airline will continue operating as it works through Chapter 11, a fact that pleases DIA officials.

"We are pleased that Frontier expects to continue normal operations and will provide full flight schedules for its passengers at Denver International Airport," said DIA's new aviation manager, Kim Day. "Based on conversations I've had with Frontier, I anticipate no immediate impact to the airport's revenues or financial position. Frontier Airlines is our hometown carrier, and it has been a valued partner at DIA since the airport opened. We have full confidence in Frontier's leadership, and we believe it will emerge from this restructuring process in a strong financial position and will remain one of Denver's premier businesses."

Frontier Airlines currently owes DIA $1.7 million, due on April 20. DIA owes Frontier $7 million in net revenue credit and $3.74 in fuel tax credit.

Full Story

Frontier Airlines Blames Credit Card Processor for Bankruptcy Filing

Posted by John B. Frank Friday, April 11, 2008 0 comments

The Airline Industry, thanks to First Data may now consider HomeATM's PIN Based Platform as their primary payment choice

HomeATM recently signed a deal with Universal Air Travel Plan (UATP) and if anyone was wondering why the Airline Industry is interested in HomeATM's platform, you need to look no further than this mornings announcement that Frontier filed for Chapter 11.

Many will blame the high cost of gasoline, but in fact, the majority of the blame (according to Frontier themselves) is their credit card processor, First Data.

Follow this link to read the letter sent by Frontier's CEO, Sean Menke to it's employees in it's entirety. Otherwise, here's a pertinent excerpt of that letter:

This week, I was notified by our credit card processor that, as of Friday, April 11, due to "current economic conditions, the rise in fuel costs and the other bankruptcies around the industry," they intended to start withholding 50 percent of the credit card funds received from the sale of Frontier tickets.

If they went ahead and did this, tens of millions of dollars owed to us by our customers would have been withheld by the credit card processor, First Data. This would have drained our available cash almost immediately and would have made it impossible for us to continue normal operations.

Therefore, we decided to file Chapter 11 in an effort to fight this unwarranted step by the credit card processor so that we can continue to position the Company for long term success.I want to emphasize to each of you that this was very sudden and unexpected. We are the victims of a credit market that is very fragile and the tolerance for risk is extremely low. As I have stated many times recently, our executive management team has been working diligently and tirelessly to extend our runway by securing additional cash to bolster our balance sheet. We were successfully making progress on a number of fronts that would position us well for the future and with the protection of the bankruptcy court, we plan to continue to pursue those opportunities.
It's simply amazing to me that a card processor, in order to mitigate "their" risk, instills immediate danger into a company's "very existence" by having control over funds that were not theirs to begin with. The time has apparently come for airlines to position PIN Debit, (not as an alternative payment), but as their primary payment mechanism. Here's more from Bloomberg...

Frontier took the step after its credit-card processor, First Data Corp., began withholding proceeds from ticket sales, the Denver-based carrier said in a statement today. First Data told Frontier April 8 it would retain half the proceeds of bankcard sales and increase collateral to $130 million from $54.5 million, according to a statement by Frontier Vice President Edward Christie filed with the U.S. Bankruptcy Court in Manhattan. If First Data's hold on proceeds went unchecked, ``it would have put severe restraints on Frontier's liquidity and would have made it impossible for us to continue normal operations.'' Menke said. First Data is based in Greenwood Village, Colorado.

I'll include more detail in next week's blog posting(s) but suffice it to say that PIN Based Transactions not only "eliminate the reserve" instituted by credit card processors, but also "lowers the transaction rate" (Interchange Fees) significantly.

Airlines are on the very brink and the issue of credit card reserves is going to explode in this space (if not in their face, as it has for Frontier) if the airlines industry doesn't start taking the necessary steps required to switch their payment choice over to the lower cost, more secure PIN Based transactional methodology that "their partner" HomeATM offers.

First Data actions today could not have driven this point home (or should I say HomeATM) any more clearly.

Full Story

PCI Standards Again Questioned in Wake of New Breach

Posted by John B. Frank 0 comments

Interestingly, the brick and mortar world, (the one chock full of PCI Standard compliance demands), seems less secure than the Online world. Yet online retailers pay exhorbitantly higher fees than brick and mortar retailers. Card Not Present transactions are certainly higher risk transactions, but HomeATM's Internet PIN Debit platform, combined with their PIN Entry Device (PED) could cut risk significantly and thus save online retailers 100 basis points off their Interchange fees.

In yet another breach, this one from Advanced Auto Parts, Retail Wire questions whether or not we should move to Chip and PIN based transactions.

Here's the discussion in today's Retail Wire...

And yet again, an American retailer and its customers go down the road of data theft. In this case, the retailer is Advance Auto Parts and the most recent hack affected 56,000 of its shoppers in eight states - Georgia, Indiana, Louisiana, Mississippi, New York, Ohio, Tennessee and Virginia. Luckily, the customers from the stores in question represent a small portion of the total shoppers that frequent the chain's 3,261 stores across the country.

The discovery of the breach, as with those at other retailers, has prompted Advance to reassess its security measures. Others, at the same time, are once again questioning if Payment Card Industry (PCI) compliance standards are either fair or effective.

In a recent interview with RIS News, Dave Hogan, senior vice president and chief information officer with the National Retail Federation (NRF), expressed the view that more secure forms of payment such as "Chip & Pin" were available and proven in reducing fraud. He suggested that card associations should "provide (at no cost to the merchant) card readers that can accept these new types of cards."

Mr. Hogan also took issue with the amount of data that merchants are required to keep by banks. He called on financial institutions to "state that 'Retailers have the option to no longer store credit card data and they will not be penalized for not keeping credit card data."

To read the Retail Wire discussion, click here. I'm sure it will garner a lot of responses. Here is one from Evan Shuman, former eWeek contributor and StoreFrontBackTalk Editor:

To answer your question, yes, Hogan's concerns are quite reasonable. Much of this, though, is a lot of agreement on the easy issues. There are few who truly argue with the following:

1) PCI is not perfect and retailers who are fully compliant are still fully vulnerable. Even PCI's backers agree with this. PCI was never intended to be perfect security. PCI was never intended to be anything beyond a good starting point.

2) PCI has absolutely improved retail security today. Again, this is pretty much done unanimous. It's not gone nearly far enough, but any movement forward is good.

3) Banks are, for the most part, much better choices than retailers to store sensitive payment data. Again, no one ultimately quarrels with this. The issue involves infrastructure, politics and business costs. To make this transition would require tons of agreement from people who are not motivated to make such agreements. So arguing that it's better doesn't help much if it can't be done given the powers that be.

4) Chip and PIN is more secure than what much of the U.S. is doing. True. But Chip and PIN--as it's deployed in the U.K.--also has many issues. Making the transition would be costly, would meet with substantial infrastructure resistance AND it would still retailers far more exposed than is desirable. For the same extreme effort and cost, we could probably come up with a more secure approach.

It's also true that if all retailers strictly adhered to the common-sense rules (no default passwords, examine traffic logs routinely and seriously, strictly enforce procedures, etc.), we'd also be far better off.

This, however, doesn't address the Hannaford scenario where--based on currently available information--we have a retailer that indeed appeared to abide by all of the rules and still got burned by some aggressive cyber thieves. That's the more rare but far more frightening scenario.

Evan Schuman, Editor, StorefrontBacktalk.com

Full Story

HomeATM Officially Invites ATMDirect to a "PIN Off"

Posted by John B. Frank Thursday, April 10, 2008 0 comments

I was speaking with Ken Mages, the founder and CEO of HomeATM and George Gendron, HomeATM's President regarding ATMDirect's questionable press release (Smoke, Mirrors and Patents) last Sunday, and the notion of calling them on their bluff came up.

Additionaly, we discussed an article written by Digital Transaction News, whereby Rajiv Grover, an investor in ATMDirect said. “Our intention is to own Internet PIN debit transactions.”

Remember...I took at close look at ATMDirect when it went up for auction and when I began digging into ATMDirect's business my conclusion was that the asset value of the associated personal property (i.e. servers, networking equipment, computers and office equipment) was worth (in an eBay resale) between $500,000 and $750,000.

Freshly armed with this information I decidedly looked at their associated, and I use this term very loosely here, "intellectual property" which solely consisted of a single patent. (not 25 global patents as stated in ATMDirect's recent press release)

In what I consider to be a "more than bold" statement, the new owners of ATMDirect went on to say: "Over the course of the next 90 to 120 days, ATM Direct is set to contract with a major, publicly held acquirer to sign merchants, receive certifications from a couple of major electronic-funds transfer networks, and sign a number of large merchants...

This leads me to my point. I have a "common sense" question that I'd like to pose here. By the way, it's the same question I posed to myself when I decided not to move forward in my attempt to acquire ATMDirect.

But before posing the question, I would ask that you first take a look at the numbers shown in the graphic on the left. (to get a bigger picture of my point, click the picture and focus on the "debit". Okay, now on with my ponderings...

For a measly $600k, wouldn't one, or even you, think that PayPal, BillMeLater, Amazon, First Data, Heartland, CyberSource, (the list goes on forever) would have been interested in acquiring the assets of ATMDirect? If any of those aforementioned companies could have "Owned PIN Debit on the Internet," a $94 BILLION dollar market for only $600k, doesn't your common sense dictate that they would have been involved?

For obvious reasons ALL were glaringly absent.

Thus the only logical assumption that a pragmatic person can make is that there's nothing there. Which brings me back to the beginning of this post.

I was talking with both the CEO/Founder and President of HomeATM, and the notion of calling them on their bluff (Myth'd it By That Much...) came up.

The fairest and most arbitrary way would be to challenge them to an old-fashioned showdown which was dubbed during the course of our conversation, a "PIN-OFF."

HomeATM would be willing to have the "PIN Off" supervised by a knowledgeable, non-partisan entity. One suggestion among many as a "fair and balanced" arbitrator was John Stewart" the Editor in Chief of Digital Transactions Magazine.

Will you, ATMDirect accept? I think the real question is: Will ATMDirect even "be able" to accept? If so, will ATMDirect be able to do so "securely" without any glitches? That is the gist of the challenge.

My take is they won't. It's too "Rocky" a road for them to travel. They know that it's simply a case of the Contender vs. the Pretender...

...Everlast versus Never...mind...I think you get the picture!

However, I've been known to be wrong before, so...ATMDirect, prove me wrong! If you don't think that HomeATM would "PIN U" into the proverbial corner, feel free to accept the invitation to an offical PIN Off by emailing me at: ATMDirect Hereby Accepts

Full Story

Study Reveals PIN Debit Provides Lowest Fraud Rate

Posted by John B. Frank Tuesday, April 8, 2008 0 comments

A study shows that in 2007 organizations were much less likely to be subject to fraud from electronic payments than from checks, including ACH debit (26 percent), corporate cards (13 percent), ACH credit (4 percent) and wire transfer (3 percent). Most fraud is caused by thieves using credit cards. 89 percent of organizations that experienced consumer electronic payments fraud claim that credit cards were used.

More than one-third experienced ACH fraud and one-quarter claim they were subject of signature debit card fraud. PIN debit cards were not frequently used to commit fraud.

Two-thirds of organizations that experienced ACH and/or card payments fraud registered financial losses and 71 percent of these organizations state that the loss was caused by online commerce.

63 percent reported financial losses from in-person transactions, while 46 percent were subject to fraud because they accepted fraudulent ACH and/or card payments over the phone.

Data was published by the Association for Financial Professionals

In a related story, SEPA stated it's concern regarding the potential of fraudulent activity as it moves forward...

Sepa fraud risk warning for businesses
Laissez-faire attitude adds to confusion over payments...

As Europe starts to adopt pan-continental payments systems, UK payments takers are ill-equipped to deal with the exposure to fraud this change might bring. The Single Euro Payments Area (Sepa) directive came into operation at the beginning of the year and Faster Payments protocols are due to go live in May.

But UK organizations in the utilities, telecoms and insurance sectors are not anticipating any change in processes or systems to introduce fraud countermeasures following the introduction of Sepa Sepa allows organizations to offer services easily across the Euro area - but this also means fraudsters can bury their trails across a number of countries. A survey of 43 companies in the utilities, telecoms and insurance sectors, from newly rebranded Experian Payments (formerly Eiger Systems), found 98 per cent are not planning to change their security policies, even though three-quarters have some business overseas.

These sectors were chosen as a sample because they rely heavily on the automated direct debit payments Sepa seeks to streamline. A significant majority (86 per cent) said they had yet to even assess the payment fraud risk of Sepa, while 15 per cent of the insurance companies questioned believed there was a negligible risk.

Gartner research VP of banking and investment services Alistair Newton said: "There is often a difficulty in assessing the value of data on payment fraud, because of the disparity in how it is measured from organisation to organisation. The important angle here is that there is clearly a lack of visibility around payment fraud at a corporate level."

Cheat Sheet: Sepa

Back in 2000, European political big wigs got together in Lisbon. By the end of their jaunt in the sun, they decided the EU would be one of the world's leading knowledge-based economies by 2010 - a plan that has become known as the Lisbon Agenda.

Out of this stemmed the idea to support innovation and the idea of a single market by making it easier and cheaper to move money around the EU.

The EC decided that cross-border payments should cost no more than domestic payments and in 2002 the European Payments Council (a group of banks) sketched plans for how this would be done.

Thus the Single European Payments Area (Sepa) was born.

What will it mean?
Basically it means fewer charges on transactions and purchases. On the consumer side of things, if Sepa comes into being by 2010, it could mean you'll be able to buy things on your card in another European country and pay nothing more than you would domestically.

On the business side, it'll basically mean the same thing but moving money around should be as cheap as it is domestically. This means banks will have to sharpen up their IT systems, to replace manual processes with automatic ones in order to bring down costs.

Sepa will also mean that European-wide card issuers can compete with domestic card firms. Sepa is probably going to be built around EuroPay MasterCard Visa (EMV) card technology to ensure security and interoperability at the acceptance point. How will it happen?

Aye, there's the rub. The thing is the banks don't really know what they should do as wise men at the EC in Brussels haven't issued any strict guidelines. A lot has been left to interpretation.

Saying that, Voca, the payments organisation formally known as Bacs, is already revamping its infrastructure to accommodate future demands of Sepa. Analysts have also predicted banks will have to spend money quite fast to hit the 2010 deadline.

After all, making all European businesses and all banks sing from the same song sheet isn't going to be easy.

What should I do to be to prepare for Sepa?
Basically, get ready to buy technology and think Europe-wide.

Is it all smooth sailing?
As mentioned, it could cost a lot for banks to get up to scratch but the benefits will be that banks can compete for customers anywhere in Europe.

Full Story

New Feature on HomeATM Blog

Posted by John B. Frank Monday, April 7, 2008 0 comments

On the right sidebar you'll find a "search this blog" option. Simply type in your request and it will search not only this blog, but give you additional options for the search parameters. For example...type in ATMDirect and4 the results will appear on the top of the most recent post.

Full Story

Smoke, Mirrors and Patents

Posted by John B. Frank 0 comments

The many people who subscribed to my Pay By Touch Blog over the past couple years know that I was a big advocate for ATMDirect, more specifically, a methodology designed to offer Internet Retailers a lower cost, more secure PIN Debit payment solution.

In fact, in one specific post I did in June of '06 I mentioned that I really believed that ATMDirect might have been a Pay By Touch Cash Cow.

That is why, when Pay By Touch announced they were selling their non-core assets, including ATMDirect, I decided to take a close look at it. Thus, I signed the requisite non-disclosure and PBT forwarded me the confidential information that they forwarded to others who may have been interested in procuring ATMDirect's assets.

I also spoke to former Pay By Touch executives who informed me that some of the claims made by the former owner of ATMDirect regarding their patents were, "misleading" or at least "overblown." So I looked at their patents, no...let's make that "patent" since only one is issued (the rest are only applied for,) as well as other key ingredients and, frankly, came away rather unimpressed.

How unimpressed? Let's just say that my vision of ATMDirect as a "cash cow" took on a new form...(which I graphically illustrate on the right)

I knew that Pay By Touch had (been duped?) paid $30.5 million only two years previously, and that now it could be had for somewhere around $500k-$750k. Even though there were several IBM Blade Servers worth about $1.5 million, I decided to pass as I wasn't in the used blade server resale business.

On Friday, I mentioned that I was going to do a post discussing how ATMDirect is bluffing their way through the PIN Debit Card game. They sure made it easy for me. as yesterday, while I was watching the Cubs game, I got an e-mail alert regarding a press release from ATMDirect.

Here's the link, followed by the portion of the press release that, in my view, is blatantly misleading. Bluffs only work when you don't have to show your cards, but when you say you have a Four Aces, you better have four and not one.

As you read the following, keep in mind that ATMDirect (or should I say ATM-Indirect.) has been issued ONE patent...and that I saw everything that ATMD had to offer and was simply not interested.

Frankly, one word sums up this press release...Unbelievable!

###

Accullink, LLC Acquires Pay by Touch Internet PIN Debit "Patents"

Accullink, LLC is pleased to announce the acquisition of Pay By Touch's "suite of 25 global Internet PIN Debit patents".

These "patents" enable, for the first time, a software-only solution for PIN based payment transactions on the Internet. "The patents" are being commercialized through Accullink, LLC subsidiary ATM Direct. Their solution provides a compelling alternative payment method for consumers and merchants.

Atlanta, GA, April 06, 2008 --(PR.com)-- Accullink, LLC, an Atlanta based investor group, has acquired Pay by Touch's suite of 25 global patents that enable a software-only solution for PIN based payment transactions on the Internet. Accullink, LLC is commercializing the patent suite through its subsidiary ATM Direct, a leading alternative payment provider.

I'll have more to say on this subject later on. By the way...if anyone from ATMDirect disputes anything I've stated in this post, I would invite them to feel free to contact me and set the record straight. johnbfrank@gmail.com

Full Story

Coming Monday...Myth'd It By That Much...

Posted by John B. Frank Friday, April 4, 2008 0 comments

PIN Debit for the Internet...which Avenue should Online Retailers Take?


VERSUS


Full Story

Consumers Prefer PIN Debit - Gartner Research

Posted by John B. Frank Tuesday, March 25, 2008 0 comments

Consumers believe it's more secure than signature credit and debit transactions and Online Retailers would love to eliminate chargebacks, let alone, reduce their Interchange Fees by 100 basis points.

So it appears that bringing PIN Debit and PIN Credit transactions to the web is just going to be the natural order of things.

HomeATM is positioned to help consumers and online retailers do just that with their patented browser space PIN debit application, which includes being able to assign PIN's to previous Non-PIN'd existing credit and signature debit cards.

Here's the report from Gartner:

U.S banks have put significant efforts into marketing contactless and signature-based debit card payments, but they have failed to win over consumers, according to market research firm Gartner.

According to a survey of 4,500 online U.S. adults in August 2007, consumers prefer PIN debit over other payment methods such as credit cards, contactless cards and signature-based debit.

PIN debit is popular with cardholders, as they believe it is more secure than signature based transactions, Gartner says.

“Despite significant marketing campaigns by banks and issuers to steer consumers towards using debit cards with a signature, consumers prefer entering their PIN to pay for groceries with their debit card over all types of signature-based card payments, whether credit or debit,” says Avivah Litan, vice president and distinguished analyst at Gartner.

Consumers’ least-favorite payment method when shopping for groceries is contactless cards, and there is similarly little interest in using cellphones for making payments, Gartner says.

According to Litan, banks promote signature-based debit payments as they earn more interchange fee revenue from card-accepting merchants. “The reason is that signature-based debit is riskier and more prone to theft, so banks need to earn higher interchange fees to compensate,” Litan says.

Fraud rates on signature-based debit card payments are at least 10 times higher than on PIN debit.

Gartner adds that contactless debit and credit card transactions earn issuers higher interchange fees than contact-based transactions. The Gartner survey found that, when shopping at grocery stories, consumers prefer PIN-debit card payments, even though only card payments with physically signed receipts typically earn them reward points. “Brick-and-mortar businesses which accept electronic consumer payments should promote use of PIN-based debit card payments through payment terminal programs and by offering store-based incentive campaigns,” Litan says.

“Businesses pay less to banks for PIN-based payments, and, since consumers prefer them anyway, this is a win-win strategy for all parties except card issuers and banks.” Related Links:

www.gartner.com
Why Aren’t More Merchants Prompting for PIN - Digital Transaction News
U.S. Consumer Secure Payment Preferences Create Opportunities for Nonbanks
Another U.S. Alternative Payment Service Debuts
U.S. E-Shoppers Turning to Alternative Payments
Surge Seen In U.S. Alternative Payments

Full Story

HomeATM Card Present Solution

Posted by John B. Frank Monday, March 24, 2008 0 comments

Card Present Solution for Online e-commerce Retailers


Traditional e-commerce is based on Card Not Present (CNP) transactions; i.e. the cardholder enters credit / debit card data using an online form. There is no way to prove that the user entering the card information is in fact the actual cardholder. To truly identify the cardholder the card needs to be processed via some form of hardware device that interrogates the card in order to match the data entered by the user with data phyiscally stored on the card.

Enter Home ATM. The HomeATM solution is based on an Internet consumer connecting the HomeATM device to their PC via a USB port. Once installed and configured the HomeATM Scanpad may used to process card present credit card and PIN debit card transactions via the Internet, resulting in less risk for all parties.

Payment for goods using PIN based Debit Cards as the settlement instrument of choice is the fastest growing card sector in the world at present. PIN based Debit Card settlement offers merchants a number of benefits such as Zero Chargeback and NO Risk.

Traditionally the ability to accept PIN based debit cards has been reliant on the card issuer. Home ATM removes this reliance - any debit card, issued by any issuer can be processed by merchants. Technically it's exactly the same transaction type as a user using a POS device or an ATM device.

Full Story

Would HomeATM's "PIN My Card" Technology Remove 75%-90% of Fraud?

Posted by John B. Frank Friday, March 21, 2008 0 comments

In the wake of Hannaford's recent "PCI Compliant" breach of over 4 million cardholders data, there has been much written on the subject. Below is a rather interesting comment from Gartner, Inc.

Avivah Litan, a security analyst at Gartner Inc. argues that the biggest lesson is that the banking industry needs to make it harder for thieves to put stolen credit card data to use.

Requiring PINs on credit card transactions, she said, "would remove 75 to 90 percent of the fraud in the system."

HomeATM's PIN My Card technology assigns PIN's to existing cardholders Credit Cards.

Hmmm...sounds like HomeATM is on to something. Look for more on HomeATM's PIN my Card technology later....

Full Story

New Credit Card Breach Will Test PCI

Posted by John B. Frank Thursday, March 20, 2008 0 comments

In a follow up to yesterday's post regarding whether or not current PCI Standards are flawed, I include this related article from Information Week.

Full Story

Does Hannaford Hack Suggest PCI Standards are Flawed?

Posted by John B. Frank Wednesday, March 19, 2008 0 comments

A security breach of one of our nation's grocery chains computer system may have exposed 4.2 million debit and credit card numbers to theft, making it one of the largest such cases in the nation. Hannaford Bros. says it has secured its credit and debit card transaction system to block future unauthorized access and the Secret Service is investigating. So far, 1,800 cases of fraud are linked to the breach.

Kevin Mandia, president of Alexandria, Va.-based computer security firm Mandiant Corp., said retailers are most vulnerable during the processing of the credit or debit transaction. Hackers can create a type of software called a "sniffer" that acts like a wiretap and can intercept credit and debit card data as it travels between the retailer's point of sale and the credit card processing company. It can be very difficult to detect sniffers.
While the banks appear all but ready to blame Hannaford for failing to follow payment card industry standards on security, there are signs that this may be the first of many cases to surface this year wherein the affected retailer was hacked even though it appeared to be following all of the security rules laid out by the credit card associations.

Editor's Note: What does this have to do with HomeATM you ask? The highlighted sections below underline deficiencies (in the brick and mortar world) where deficiencies should NOT exist and where HomeATM has already taken precautions designed to alleviate these new concerns.


The Boston Globe's Ross Kerber today writes that Hannaford is still investigating the specifics of how the data was taken, but that the company's chief executive said the data "was illegally accessed from our computer systems during transmission of card authorization." Translation: The hackers snatched the credit/debit card data sometime between when the customer swiped their card in the reader at the register and when that transaction was approved.

Editor's Note: If the passage in the second highlighted area is correct, then the revised PCI-DSS standard is flawed.

The Globe story continues: "What could make the Hannaford case unusual is that since last spring its stores have met industry standards regarding how customer data is stored and maintained, Eleazer said. Many other retailers victimized by breaches, including TJX, had been faulted for lax security. It's too soon to know whether Hannaford's case will warrant the consideration of further security reforms, said Ted Julian, vice president of strategy at Application Security Inc., a New York database services company."

Brian Sartin, vice president of investigative response for Cybertrust, a division of Verizon said a great many retailers have taken extra precautions to ensure that any credit or debit card data they store is properly encrypted and secured.

Sartin said his team is currently responding to a number of data breaches in which hackers have targeted financial data as it is being transferred from the retailer to the credit card processor and back.

While the payment card industry standards require retailers to encrypt payment data when it traverses public networks, that requirement does not necessarily apply to a company's own internal, non-public networks, Sartin said.
"I would say a trend we're seeing hitting a lot of retailers right now is that these organizations can be [compliant with the credit card industry security standards] and still have customer data stolen," Sartin said. "The data in transit is allowed to traverse private links and internal infrastructure without being encrypted, and the attackers are taking advantage of that."

Editor's Note: According to George Gendron, President of HomeATM, "Contrary to current practices – and a function that HomeATM has presented a patent application on – HomeATM decreases the chance of hacking during transmission by not only encrypting the PIN, but also the PAN prior to transmitting."

Sartin declined to say whether this dynamic was at work in the Hannaford case (his company had been retained by a party involved in the breach). But he noted that Cybertrust has found with a number of very recent compromises that attackers have seized control over the very terminals that control cash registers or point-of-sale systems within a retail store, or the server through which all registers connect to pass transaction data out across the Internet to the store's payment processor. Once these systems have been compromised, Sartin said, the attackers typically eavesdrop on the network using "sniffer" programs that can extract credit and debit card data as it moves across the wire, before it even leaves the store's network.

Indeed, attackers appear to be exploiting the letter - if not the spirit - of the payment card industry standards, said Tom Kellerman, vice president of security awareness at Core Security.

Kellerman said many retailers not only fail to encrypt financial data while it is being moved around inside the stores, but they also fail to understand that encrypting data is meaningless if the merchant doesn't also harden the security of the computers that power the point of sale systems.

Already, there are signs that 2008 may turn out to be a record-breaking year for retailer and card processor data breach disclosures. Kevin Mandia, president of Mandiant Corp., an Alexandria, Va.-based company that specializes in investigating data breaches, said his firm responded to more credit card losses in the past year than in any prior 12-month period. "It's early in the year, but the tempo [of data breaches] has been very heightened since the summer of 2007 and maintained the same barrage," Mandia said. "We're seeing at least two new companies a week discovering that they've lost credit card numbers, and at the rate we're going [the criminals] are going to exhaust U.S. retailers as targets.

Full Story

HomeATM's New Flash Website is Up

Posted by John B. Frank Monday, March 17, 2008 0 comments

HomeATM's new Flash Website is up and running. Although there's still a lot of work to be done before it's complete, it is currently available for viewing. I expect that it will be up and down over the course of the next few weeks/month as ongoing work is being done to complete it. But take a look. FYI: To turn off the music, look for an icon on the bottom middle right and click it.


On the right is a screen capture of the Introduction and Benefits to Merchants...

Click the picture to enlarge or vist HomeATM's website at:

www.homeatm.net




Full Story
Powered by Blogger.

Search This Blog

Our Manufacturing Facility

Our Manufacturing Facility

Learn More About Us

Find out how our patented technology can empower your financial institution.

Our secure two-factor online banking authentication eliminates dangerous passwords and usernames and replicates the same trusted process used to access cash at ATM's. (Insert Bank Issued Card, Enter Bank Issued PIN)

There is an R.O.I. as FI's also earn recurring revenue from each transaction conducted using our PCI 2.0 Certified PIN Entry Device. Our technology also provides a unique real-time P2P "Instant-Transfer" which allows your online banking customer to transfer cash from ANY of their bankcards to ANY other bankcard...with the Swipe of a card.

Help your bank eliminate phishing and your customers avoid identity theft by providing them with the ability to stop typing and start swiping. There is no safer way to conduct financial transactions online than by 3DES DUKPT encrypting the cardholder details, which we do at the mag-head "inside the box/outside the browser."

Total Pageviews

SLIM for PC or SmartPhone

SLIM for PC or SmartPhone
Click to Inquire

Chip and PIN eCommerce and Mobile

Chip and PIN eCommerce and Mobile
Click to Inquire

Kapersky Calls for Mass Adoption of Card Readers

Kapersky Calls for Mass Adoption of Card Readers

Translate This Blog

BobCaps

BobCaps

Search ePayment News (example: NFC)

About Me

My photo
Named one of the best Payment Industry News Blogs 4 Years Running

Feedjit

My Zimbio