The Webwereld story, "Credit card providers leave EMV skimming hole open," posted Wednesday, incorrectly reported the date of a paper by Ross Anderson. The correct year is 2008. The story has been changed on the wire and the eighth paragraph now reads:

Barisani's research is verified by Ross Anderson, professor of computer engineering at the University of Cambridge. In 2008 he published a paper about a similar flaw in the EMV protocol. Inverse Path and Aperture Labs used this paper as a basis for their research.