Last week two vulnerabilities were reported with Google’s Google Wallet app. The first vulnerability was found in rooted phones. The second one, which we reported on Thursday, could have potentially affected anyone who had Google Wallet that had their compromised. Through that exploit all someone would have to do is uninstall and reinstall Google Wallet, set a new pin and use the funds associated with that Google Wallet’s prepaid debit card.
As a precaution Google halted the issuance of New prepaid Google Wallet cards and also took extra precautions with Google Wallet. Over the weekend many Google Wallet users found that they could use their prepaid card but the funds in the account didn’t change in real time. That issue, along with the security issue have been resolved and all is good Google Wallet land.
More after the break
On Tuesday Google issued the following statement:
Yesterday afternoon, we restored the ability to issue new prepaid cards to the Wallet. In addition, we issued a fix that prevents an existing prepaid card from being re-provisioned to another user. While we’re not aware of any abuse of prepaid cards or the Wallet PIN resulting from these recent reports, we took this step as a precaution to ensure the security of our Wallet customers. If you are unable to access your previous prepaid card balance for any reason, please contact our toll-free support for assistance.
While this Google Wallet issue has been resolved it’s unclear whether Google addressed the issue with rooted devices.