I genuinely suggest anyone interested on the subject to watch Kristin Paget's 2012 Schmoocon talk (I know, there are many other talks, but Paget actually provides a decent band-aid at the second half -- the first half is about proving the fraude). It's very enlightening. Granted, it's a fairly old talk, so some points might be dated, and some might be common knowledge by now, but fundamentally speaking, NFC will never be entirely safe. No matter how sophisticated the backend security is.
The talk:
Personally, I'd much rather do NFC transaction via a phone (especially something that's well implemented software-wise like Apple Pay, as well as hardware-wise), because that's something I can switch off when not in use, instead of being statically passively present. Do need to abide to a couple of rules though. Which are: keep phone up to date, only install apps from official stores, and abstain from obtaining SU rights, but that's standard requirement for anything on any device these days.
I don't agree at all by the way that NFC transaction is more safe than anything we've got. The safest is still PIN + physical insertion (to read the chip, not magstrip) at terminal. You just can't beat non-wireless in terms of security. Remember that the banks and retail sector didn't choose NFC for better security over standard card insertion based transactions, but to raise the transaction flow rate. If they could've waved a magic wand and make insertion based transaction just as smooth as NFC, I'm pretty sure they'd stick to the former as it has got way less security variables to account for.