DEV Community

Christina
Christina

Posted on

Google Failed

#devchallenge #cloudnextchallenge #googlecloud

Google uses the Luhn algorithm to determine if the card is fake.

And my testing of Google Enterprise I found multiple security vulnerabilities involving privacy and also know your customer.

For example in the very first video that we watch it says are you ready to sign up for Google Enterprise.

It cost $25 a seat you can get up to four seats at the $25 that's it you get $0 Bill the first month and after that you paid $25 a month.

So for my test I am pretending to be an FBI agent.
In the organization field I enter Federal Bureau of Investigation. See screenshot

When you go down and ask for an address which you can think that doesn't even match the company.

The FBI is not at 210 Cypress Street West in Davenport Florida.

KYC means means companies that deal in financial transactions for example Cash App,the banks they have to have an ID, Biometrics, something you have and something you know. Things like that to prove that you are who you say you are and to pass anti-money laundering regulations. It helps clamp down on fraud which Google has a problem with.

The algorithm that they're using to check the payments is easily fooled because you can go to the dark web purchase credit card numbers full billing address of any FBI agent any regular Company CEO for that fact.

You can follow your Target and see which ATMs they use and install a carding machine because ATM cameras are not real-time cameras fed into a SOC Center.

Banks even fail this with Google that they don't use license plate readers, the cameras that they have at the banks can be improved. You can walk up to any ATM with a mask on your face and draw money out on a card that doesn't even belong to you.

Google falls under KYC due to regulation from past failure with the 2011 Google Buzz case.

The next thing I did was enter a credit card number that did not match and I was curious to see how Google's algorithm was going to handle it you can put in a card number and it will bypass the Luhn algorithm to check for fraud.

So Google by their own admission will allow you to take over the FBI even their own company by using temporary email addresses from Proton, Maleficent, I did not try the dark web email.

The Luhn algorithm uses every other number to see if it gets a certain sum.

Google also just not ask for a phone number there is nothing to set up two Factor Authentication there is no backup codes to secure the business profile that you entered.

There's also no IP to check I'm in Florida at the moment and I'm on a Dominican Republic phone with a VPN with a IP address of Florida which should have been flagged but it wasn't.

So overall Google next 25 FAILS.
They fail for privacy and security
They failure of taking over a government organization,or any company for people to be scammed, deceived.

They failed for a lack of an authentic email and they fail to do an IP based check.

Top comments (0)