RFID More Hackable Than Retailers Think?

Iphtashu Fitz writes "Lukas Grunwald, a senior consultant with DN-Systems Enterprise Solutions GmbH, is warning retailers that the RFID technology that they are quickly adopting can easily be hacked with the appropriate tools. Grunwald has written a program called RFDump which lets you read and display all metadata within an RFID tag and also modify the user data using a text or hex editor. He wrote this program to demonstrate how consumers can protect themselves by wiping out RFID data after purchasing a product but he acknowledges that it would be trivial to abuse this behavior. What, you might ask, can you do if you hack an RFID tag? Well as the technology is adopted more widely a thief could conceivably mark down the price of an expensive piece of jewelry before paying for it at an automated checkout counter, underage hackers could purchase alcohol or adult movies, and pranksters could simply reprogram the inventory of an entire store by just walking up and down the isles. 'The people who will be using this (shopkeepers) don't know much about technology,' Grunwald warned."

who knew?

[numLocked]

stupid rfid

Re:Reprogramming

losing track

Sir, the word is loosing

RFID Hacking Fun

[Motherfucking+Shit]

What, you might ask, can you do if you hack an RFID tag?

I'd convince CmdrTaco that, even though pants are optional, I'm wearing some.

Re:Reprogramming

[Amiga+Lover]

> Sir, the word is loosing

Only if you're stupid

Re:Reprogramming

[name773]

it would've been funnier if you spelled it stoopid... you know, just for kicks

Re:Reprogramming

[RMH101]

...no, it isn't.

Slashdot is censorware

Either your network or ip address has been banned from Slashdot

...due to script flooding that originated from your network or ip address -- or this IP might have been used to post comments designed to break web browser rendering. Or you crawled us with a rude robot, especially one that doesn't understand RFCs very well.

If you feel that this is unwarranted, feel free to include your IP address (66.230.165.157) in the subject of an email, and we will examine why there is a ban. If you fail to include the IP address (again, in the subject!), then your message will be deleted and ignored. I mean come on, we're good, we're not psychic.

If you think your IP number is different from 66.230.165.157, tell us both.

If you are using a browser with some kind of add-on that crawls or caches pages for you, tell us what it is.

Since you can't read the FAQ because you're banned, here's the relevant portion: Why is my IP banned?

Perhaps you are running some sort of program that loaded thousands of Slashdot Pages. We have limited resources here and are fairly protective of them. We need to make sure that everyone shares. If your IP loads thousands of pages in a day, you will likely be banned. Please note that many proxy servers load large quantities of pages, but we can usually distinguish between proxy servers being used by humans, and IPs running software that is hammering our servers.

Your IP might have been used to perform some sort of denial of service attack against Slashdot. These range from simple programs that just load a lot of pages, to programs that attempt to coordinate an avalanche of posts in the forums (often through misconfigured "Open Relay" proxy servers).

You might be using a proxy server that is also being used by another person who did something from the above list. You should have your proxy server administrator contact us.

Your IP might have been used to post comments designed to break web browser rendering.

Answered by: CmdrTaco Last Modified: 7/02/02 How do I get an IP Unbanned?

Email banned@slashdot.org. Make sure to include the IP in question, and any other pertinent information. If you are connecting through a proxy server, you might need to have your proxy server's admin contact us instead of you.

Answered by: CmdrTaco Last Modified: 3/26/02

Re:Barcodes are unsafe too.

Are you talking about "teh fonicks" - valu addition?

Re:Barcodes

[way2trivial]

she's so sure to notice the diff between hellmans and stor brand mayo?
frenches and store brand? both little yellow bottles?

That Kevin Costner!

[AndyMouse+GoHard]

"...just walking up and down the isles."

Waterworld, great movie. And that Costner, what an actor. I'd love to see him team up with Barney Rubble.

Bill

Re:Barcodes are unsafe too.

oh God please let that be a spelling mistake and not a new "phonics 2: return of the retards" version of phase.

It's just a mistake, don't let it faze you.

Spelling modifications

[abb3w]

A Plan for the Improvement of English Spelling
by Mark Twain

For example, in Year 1 that useless letter "c" would be dropped to be replased either by "k" or "s", and likewise "x" would no longer be part of the alphabet. The only kase in which "c" would be retained would be the "ch" formation, which will be dealt with later. Year 2 might reform "w" spelling, so that "which" and "one" would take the same konsonant, wile Year 3 might well abolish "y" replasing it with "i" and Iear 4 might fiks the "g/j" anomali wonse and for all.

Jenerally, then, the improvement would kontinue iear bai iear with Iear 5 doing awai with useless double konsonants, and Iears 6-12 or so modifaiing vowlz and the rimeining voist and unvoist konsonants. Bai Iear 15 or sou, it wud fainali bi posibl tu meik ius ov thi ridandant letez "c", "y" and "x" -- bai now jast a memori in the maindz ov ould doderez -- tu riplais "ch", "sh", and "th" rispektivli.

Fainali, xen, aafte sam 20 iers ov orxogrefkl riform, wi wud hev a lojikl, kohirnt speling in ius xrewawt xe Ingliy-spiking werld.