Add to Chrome
Add to Edge
Add to Firefox
Add to Opera
Add to Brave
Add to SafariOutdated Security Model: Spending Offline
Most cards have been upgraded to use Chip and Pin, which offers some level of security. However the old mechanism of signatures is still valid as a fallback option. Often people's signatures are inconsistent, making the need to forge them redundant and the process of checking them mere lip service security; and that's assuming the person's even bothered to sign their card.
Even when chip and pin is available and working, most people don't hide this 4 digit code, making it pretty easy for a supposed bystander to observe and remember.