POLi Payment Gateway: Why you shouldn’t use this option…

Info.Tech, Security Concerns, Web Development 2 Comments »

poli_1

 

 

 

 

 

The first time I saw POLi payments was in Qantas Airlines New Zealand. The moment I saw asking for my Bank Credentials, I click back button ripoli_3ght away.

Why? Because POLi is asking your Access Code/Username and Password of your bank, your BANK CREDENTIALS! Imagine your hosts file has been altered by malware or any virus or your network has been hacked or exploited or your ISP has been hacked or whatever above your internet line has been altered pointing POLi payment gateway’s DNS to different server, you will be giving your bank access to the hackers. And POLi is a direct access to your bank account (your entire assets in your bank) and initiate the transaction right away. Unlike credit cards, if your card has been expospoli_2ed, then the risk is JUST your card, not your whole account in the bank then you still have time to call the bank the close it right away.

So my advise never use POLi payments. I’m not against the company or the people who created it but I am just against how the implementation or how it works.

WP Theme & Icons by N.Design Studio
Entries RSS Comments RSS Log in