Description: In this video Chris Paget demonstrates how he is able to sniff sensitive information off EPC (Electronic Product Code) RFID tags used in Passport card, Enhanced Drivers Licenses using off the shelf hardware he bought at E-bay for less than $250.
The original vulernability was publicized earlier in RSA last year and a research paper has been published on the discovered techniques. The paper explores 3 techniques to hack the security of the tags - Cloning (creating a copy), Read Ranges and Design Drift (vulnerable to scanning, denial of serivce and covert-channel attack).
In the video below, Chris drives through the streets of San Francisco and picks up sensitive information from around 2 of the cards from bypassers, while they were totally unaware of the situation. Chris' tool kit includes a Symbol X400 RFID reader, Motorola AN400 patch antenna and a Dell 710m laptop, all mounted in his Volvo XC90.
Tags: fun ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.