9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do. Our unique integrated approach to management and security combines state-of-the-art Apple-specific security solutions for fully automated Hardening & Compliance, Next Generation EDR, AI-powered Zero Trust, and exclusive Privilege Management with the most powerful and modern Apple MDM on the market. The result is a totally automated Apple Unified Platform currently trusted by over 45,000 organizations to make millions of Apple devices work-ready with no effort and at an affordable cost. Request your EXTENDED TRIAL today and understand why Mosyle is everything you need to work with Apple.
Talk of the largest grocer in the world not supporting Apple Pay or any Tap to Pay solution for that matter is making the rounds on social media again, as 9to5Mac noted yesterday. It is worth mentioning that there are real security benefits behind this technology. While the vast majority of users choose tapping for payment because it is quick and easy, there is a lot happening behind the scenes to keep your information private.
Upon setting up Apple Pay for the first time, your iPhone, Apple Watch, or Mac will generate a unique Device Primary Account Number (DPAN), which acts as a proxy for your real card info. This number is stored on a dedicated chip called the Secure Element that is completely isolated from the rest of your phone, watch, or computer. This is similar to, but works alongside, the Secure Enclave. When you tap to pay, the Secure Enclave verifies that it is actually you via biometrics (FaceID/Touch ID), then tells the Secure Element it is okay to release a cryptographic one-time token for that specific purchase.
It is no secret that Walmart continues to choose its own payment service so it can track user data. When you use Walmart Pay or Scan and Go, everything you buy is linked directly to your account to build a profile for advertising and marketing. Apple Pay or any other contactless payment method would make this type of tracking much harder because it doesn’t share your name or card info with the merchant.
By forcing people to use their own app or an actual card, Walmart is essentially choosing data tracking over user safety. They want to see what you buy and link it to your name, rather than letting you use a system that keeps your identity, card numbers, and purchase history private.
I sort of agree with the Internet on this one. Not supporting Apple Pay in 2026 is crazy; a crazy big security risk, though.
Subscribe to the 9to5Mac Security Bite podcast for biweekly deep dives and interviews with leading Apple security researchers and experts:
- Apple Podcasts
- Spotify
- Overcast (coming soon)
- Pocket Casts (coming soon)
FTC: We use income earning auto affiliate links. More.
Comments