Most modern mobile telephones running Android OS have a built in NFC reader that can be used to unlawfully scan contactless payment cards.
[2] With the wirelessly obtained payment card information, the criminal can use it to make fraudulent purchases online.
125 kHz RFID and other systems relying on a unique identifier number (UID) are vulnerable to this.
[6] However, there are no statistics available regarding RFID skimming, as it is difficult to determine the method of card fraud.
Hacking online merchant web pages requires substantial computer knowledge.