UBL wiz visa card Internet application insecure

November 8th, 2009

United Bank Ltd. sells these prepaid visa cards called wiz. One of best features of these cards is that you can use them online. But before you can do that you have to send a signed Internet application form. You can send it via email, fax or postal mail.

But the email method of submission is very insecure.

Now the form has to contain your card number and your signature. So you have to download it, scan it and email it to them. The problem arises when it comes to the security of that email message. You have to send that email to them in unencrypted form! The reason being that they provide no PGP key for you to encrypt it. I emailed them asking for one but got no response!

But its not just the internet application form. One of the features of a wiz card is the option to receive an account statement via email. This is actually an essential feature because its the only way to get an account statement short of going to an ATM. Unfortunately this e-statement also includes your full debit card number in plain text!

Anyone can intercept these emails and it will reveal your debit card number. The hacker can then use that number to shop online at your expense!

Looks like these guys have a lot to learn about IT security.

Please see read my full review of the UBL wiz card.

Online business Leave a response

9 Responses to “UBL wiz visa card Internet application insecure”

  1. Hassan says:

    The debit card number alone won’t do any good.

    Posted on 15 Nov 2009 Reply
    • Abdussamad Abdurrazzaq says:

      Yeah your right. They also need the expiry date and they have to know when your card is activated for online use. But its still better to be safe than sorry.

      Posted on 16 Nov 2009 Reply
  2. Abd-ul-qadir says:

    activate my wizz card

    Posted on 07 Jul 2010 Reply
    • Abdussamad Abdurrazzaq says:

      This is not UBL’s site. I am not affiliated with them in anyway. IMO UBL should not activate your card because you don’t appear to be very smart at all.

      Posted on 09 Jul 2010 Reply
  3. farooq says:

    UBL PAKISTAN is third class Bank . Bakwas Bank hei . WIZ Take 30 days or more to be activated .

    Posted on 03 Aug 2010 Reply
  4. Umair says:

    yes :) Fuc**** Bank.. before Account Opening../ Registration of Wiz Card. they said apka card ausi wakt mil jaega.. then after giving card.. 4 days verification me lagienge then you can apply for internet usage.. wahh 4 ki jagah mujhe 12th day he :) still Verification nahi huwi…

    koi na le UBL Wiz Card kisi kam ka nahi he..

    Posted on 24 Nov 2010 Reply
  5. Saeed says:

    I wish i came to this website before getting UBL Wiz Card…

    I am 27 and Alhumdulilah doesn’t look like a teenager at all … but those UBL idiots gave me a Teen Internet Visa card… what the !@#(*#@

    Posted on 24 May 2011 Reply
  6. Tasawer Abbas says:

    Ma Na apna Teen Internet Visa Apply Kiya hai Or mera card 3 Days ma Activate ho geya hai Aub Agay dekhtay hain ye meray Kam ata hai ya nahi lolz :)

    Posted on 24 Sep 2011 Reply
  7. Sub Elahi says:

    Ye jo UBLWizApplicationForm.pdf fill karkay send karni ha yeh to sirf first time karni hana? yeh to nahin jb bhi net par use karna ho inhain yeh fill karkay dubara send karna ho?

    Posted on 04 Nov 2011 Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong> <pre lang="" line="" escaped="">

© 2011 Abdussamad Abdurrazzaq - Contact