Contactless Smart Cards, RFID, Payment, Transit and Security

Kobil's smart card reader hacked using unsigned firmware

Thursday, June 3, 2010

H Security reports that Kobil’s smart card readers have been hacked with a Windows tool and unsigned firmware, granting thieves access to PINs and other secure data.

The Kobil readers in question have been tested by the German Federal Office for Information Security and certified as compliant with the rigorous German Signature Law (SigG).

A hacker by the name of Colibri has informed Kobil about the vulnerability and released a report that explains the procedure of the “intermediate” level hack and provides the necessary Windows tool and firmware updates.

According to H Security, the German Federal Network Agency has issued a warning about the security issue, but new firmware still hasn’t been certified.

Prof. Dr. Rainer W. Gerling of The Max Planck Society for the Advancement of Science told H Security, “This hack shows that the quality of a certification depends on the creativity and imagination of the tester. This is a fundamental problem of certifications.”

Read more here[end] 

Related Articles
NagraID presents new display cards at ShowStoppers@CES

NagraID demonstrated its latest line of display cards at this year’s ShowStoppers@CES exhibition at the Wynn Las Vegas hotel.

These display cards enable cardholders to use one device for payment, physical access, online account security and transactions for card not present environments. The credit card-sized display cards contain an integrated LCD for displaying single-use passwords, personalized messages and other critical information.

read more »
Survey: Germans coming around to NFC, contactless payments

A new survey from Euro Kartensysteme shows that Germans are starting to embrace the idea of contactless and NFC payments.

Out of 1,040 Germans aged 18-59, 43% responded that they would like to make contactless payments if given the opportunity, of which 58% percent would make their payments with a debit card card, 41% with a credit card and 50% with an NFC phone.

read more »
Square hits one million activation mark in U.S.

Although the push for NFC and mobile payments is on, Square is doing its part to make sure consumers still reach for their credit cards, reports Recombu.

read more »
ACS launches upgraded LCD NFC reader

Hong-Kong’s Advanced Card Systems (ACS) has announced the latest addition to its line of LCD-equipped NFC readers for payments and loyalty, the ACR1222L.

Successor to the ACR122L, the new reader is based on 13.56 MHz RFID technology and ISO 18092 NFC standard, and supports ISO 14443 Type A and B Mifare cards in addition to FeliCa and all 4 types of NFC tags, according to ACS.

read more »
Smart cards replace paper coupons in Indian prison

Prisoners at Tihar prisons, located near New Delhi, India, will now be using smart cards instead of paper coupons for their food purchases.

As reported by The Economic Times, the former system of paper food coupons led to misuse and illegal activity within the jail. Some prisoners would use it for currency in order to get banned substances or buy favors from others.

read more »
PayPal pilots NFC payments in Sweden

PayPal has announced that it will launch its first-ever pilot of NFC retail payments in Sweden for the holidays, according to Mobile Payments Today.

The company has partnered with Swedish mobile banking and payments provider Accumulate to deliver PayPal Instore, a new mobile payments app for Apple and Android smart phones.

read more »

Ads by AVISIAN
Subscribe to the Contactless News Library
Gain access to the largest collection of Auto-ID analysis on the Internet.
Copyright © 2012, AVISIAN, Inc. All rights reserved.