Square mobile payment readerWe’ve been watching mobile and tablet payment solutions for years as people with an interest in technology, but it’s interesting to watch it show up more in everyday life. Products from companies like Square and PayPal are removing barriers for businesses and non-profits when it comes to accepting payments.

The barbershop where my boys and I get our haircut, uses Square readers to process payments (and set appointments, but that’s a separate post.) My son’s cub scout troop has a reader to process payments for events and popcorn sales. The food truck we brought to our campus last year accepted cards via Square.

These technologies and accessible and affordable, but are we embracing them as well as we should in higher ed?

I can understand not accepting mobile payments for something like tuition, but there are a myriad of other opportunities we can take advantage of.

Student Life

This area of our campuses is ready for mobile payments. Coffee and quick-stop dining options could use mobile payments to improve checkout speed and serve more customers.

I think there’s also opportunity here to do mobile payments for events and student activities programming. IANASAP1, but I would think allowing people to show up at an event, activity, show, or lecture and pay at the door as opposed to making students pre-register or pre-purchase tickets/passes. This could improve attendance and ultimately drive revenue.

Admissions

As I mentioned before, I don’t see many institutions being ready to take tuition payments via a tablet or phone, there’s no reason we can’t do things like accept admission deposits at open house and other special events. I think this would be very convenient for families who are ready to make a decision — they wouldn’t have to shuffle off to an office or other bursar office, they could sign, swipe, and head to the bookstore to buy a new sweatshirt.

Speaking of bookstores…

Bookstores

I realize the majority of campus bookstores are not run or managed by the University, but there’s no reason they can’t streamline checkout processes in times of  heavy demand, such as the start of the semester when long lines for book purchases happen.

Mobile payments would also allow bookstores to do things like open pop-up shops or other temporary merchandise stalls during large or special campus events – think Homecoming, Reunion, open houses, big sporting events, and so on.

Alumni and Fundraising

This one’s definitely low hanging fruit. I could see this making life easier for not only alums attending an event, but for alumni staff. I know how hard the alumni team at my last institution worked on events, and think this could help many smaller teams tasked with doing more and more events across the country.

This would be helpful for events, sure, but it could also be a very easy tool for giving, not just for alumni events (where it could do well if promoted well), but also other giving populations, such as senior class giving and parents, the latter of which are mostly solicited via paper and email.

If I was at an event, and could give $5 or $10 right there with my credit card, I would. I also don’t think this would dip into other giving, major or annual. It would be a nice supplemental revenue stream.

I saw this infographic recently with some more thoughts on mobile payment processing. While not higher ed specific, it does give a nice overview of the landscape of this industry and provides some data points.

 

Tablet POS Systems

1 – I am not a student affairs professional.

Dropbox LogoDropbox is one of those services that many of us rely on heavily. It’s been a key part of my workflow for many years, and one of the features that I like about Dropbox was its public folder setup. You could throw a file in there, easily get a link, and share it. It’s a convenient way to share files, especially for one-off situations.

As Dropbox grew and matured, users gained the ability to get a sharing link for any file, which made the public folder slightly less necessary. What this new feature lacked, that the public folder has, is the ability to serve that content natively in the browser. HTML would render, images could be included in a page, and so on. It was, actually, a web host.

And I’m sure people abused the heck out of it. I’ve seen whole websites shared there. I’m sure files that probably shouldn’t be shared are there. Like I said, free web hosting. To their credit, Dropbox would turn some shares off if the bandwidth got too high, but it still was probably spending a large amount of money on bandwidth for shared, public items.

Last week, Dropbox started letting users know it was doing away, once and for all, with the public folder. Accounts created after 2012 never really had the public folder, so this is mostly affecting long-time, legacy users.

Free users will see their access to the public folder go away in March of 2017,  for pro users, it will end in September. Here’s a small snip the website note posted last week:

Dropbox Basic (free) users: Beginning March 15, 2017, the Public folder will be converted into a standard Dropbox folder that’s private to your account. This transition will occur automatically. After the transition, when someone visits an existing Public folder link, they’ll see an error page. If you want to share any Public folder content again, you’ll need to use any of our other sharing methods. Learn more.

With the new sharing links, users don’t need a public folder, any file can be shared via link. And as a bonus, Dropbox will probably save some decent money on bandwidth for all the free sharing they were doing.

To celebrate the end of this era, here’s a direct link to an image shared in my Dropbox public folder. It’s a photo of the city of Cardiff, Wales, taken from my favorite bench on the Cardiff barrage. Enjoy, and thanks, Dropbox, for a great service!

Yahoo LogoYesterday, Yahoo announced that back in 2013, approximately 1 billion accounts were hacked, and information about those accounts, including names, hashed passwords, dates of birth, and more were taken. This is on top of the 500 million accounts that they announced last September had been hacked.

First off, Yahoo was using MD5 for hashing passwords. MD5 was shown years ago to be crytographically insecure. I know engineers at Yahoo are pretty smart, but this is pretty dumb.

Second, how do you let 1.5 billion accounts get compromised? Why does Yahoo not take security seriously? In an email to affected accounts, Yahoo said this about what happened:

Law enforcement provided Yahoo in November 2016 with data files that a third party claimed was Yahoo user data. We analyzed this data with the assistance of outside forensic experts and found that it appears to be Yahoo user data. Based on further analysis of this data by the forensic experts, we believe an unauthorized third party, in August 2013, stole data associated with a broader set of user accounts, including yours. We have not been able to identify the intrusion associated with this theft. We believe this incident is likely distinct from the incident we disclosed on September 22, 2016.

Here’s what’s worrying about the announcement. They can’t seem to find out how it happened. They posted this on a Tumblr (?!) site:

We have not been able to identify the intrusion associated with this theft.

Wow. Seriously? 10,000 employees and you can’t figure out how your systems got hacked, again?

If you have been affected by this or a previous breach at Yahoo, here is my professional advice:

STOP USING YAHOO!

If you are using Yahoo for your main personal email, stop immediately. Use Gmail. Yahoo has shown it does not take security and the safety of your data seriously, so don’t use them. Even if we don’t take into account that Yahoo was scanning emails for content and giving it to US intelligence agencies, it’s not safe.

Change all your Yahoo passwords immediately. Email, Flickr, Fantasy Football, all of it. Now. Stop reading this.

I have a spare email address there I use for signing up for dubious looking sites and other mailing lists, fantasy football, and some other things and I’m changing my password there just the same.

R.I.P. our data.