Slashdot Mirror

← Back to Stories (view on slashdot.org)

Square Debuts New Email Payment System

Posted by Soulskill on from the all-about-the-benjamins dept.

cagraham writes "Mobile payment company Square — best known for their smartphone credit-card swipers — has launched a new payment service called Square Cash. The service doesn't require users to sign up or make an account. Instead, they just email the person they'd like to transfer money to (with the amount as the subject), and CC 'cash@square.com.' Square asks the sender for their debit card info, and then sends a link to the recipient, who can transfer the money into any account they want within 1-2 business days."

4 of 240 comments (clear)

  1. Ummmm... by Anonymous Coward · · Score: 5, Insightful

    This has got to be the most insecure payment system ever.

  2. Sounds ready for abuse by Anonymous Coward · · Score: 5, Insightful

    So the From:, Subject, To:, and Cc: headers are what makes this work?

    Not a bad idea, really, except that it can all be trivially spoofed, and the resulting set up/confirmation emails can be trivially intercepted and abused at will. Plus, of course, no easy drop-in encryption, and in the end it piggybacks on existing systems, so all the risks associated with them (like credit cards) will be neatly folded into the deal too.

  3. Training users to click on links in their inbox by Floyd-ATC · · Score: 5, Insightful

    How many times must people be hit in the head with a clue bat before they understand that this is a Bad Idea[tm]

    --
    Time flies when you don't know what you're doing
  4. Re:Really? by Anonymous Coward · · Score: 5, Insightful

    Sounds like an easy way to do a phishing scam.