The Rising Barcode Security Threat

← Back to Stories (view on slashdot.org)

The Rising Barcode Security Threat

Posted by ScuttleMonkey on Monday December 31, 2007 @11:23AM from the what's-in-a-number dept.

eldavojohn writes "As more and more businesses become dependent on barcodes, people are pointing out common problems involving the security of one- or two-dimensional barcode software. You might scoff at this as a highly unlikely hacking platform but from the article, 'FX tested the access system of an automatically operated DVD hire shop near his home. This actually demanded a biometric check as well, but he simply refused it. There remained a membership card with barcode, membership number and PIN. After studying the significance of the bar sequences and the linear digit combinations underneath, FX managed to obtain DVDs that other clients had already paid for, but had not yet taken away. Automated attacks on systems were also possible, he claimed. But you had to remember not to use your own membership number.' The article also points out that boarding passes work on this basis — with something like GNU Barcode software and a template of printed out tickets, one might be able to take some nice vacations."

7 of 125 comments (clear)

Min score:

Reason:

Sort:

Nice vacations? by MiniMike · 2007-12-31 11:26 · Score: 5, Funny

> The article also points out that boarding passes work on this basis -- with something
> like GNU Barcode software and a template of printed out tickets, one might be able
> to take some nice vacations."

Yeah, in Guantanamo...
1. Re:Nice vacations? by jacquesm · 2007-12-31 11:30 · Score: 5, Funny
  
  water boarding passes ?
  
  --
  MP3 Search Engine
2. Re:Nice vacations? by Smordnys+s'regrepsA · 2007-12-31 11:37 · Score: 5, Funny
  
  Water boarding? If that's anything like wake boarding, count me in!
  
  --
  Just -1, Troll talking to another.
Great. by Rgb465 · 2007-12-31 11:43 · Score: 3, Funny

The article also points out that boarding passes work on this basis -- with something like GNU Barcode software and a template of printed out tickets, one might be able to take some nice vacations."

Great, now GNU Barcode will be classified as a terrorist weapon...
Must admit I've taken advantage... by russotto · 2007-12-31 11:54 · Score: 3, Funny

Darn it, now Acme* is going to read this and put a stop to my fake-discount-card ways. (they'll accept any code with the right length and first three digits... amusingly including other supermarket's cards).

*That's the grocery store, not Roadrunner's coyote-torturing company.
In other news... by Anonymous Coward · 2007-12-31 12:23 · Score: 5, Funny

L33t hackers discovered that with a certain amount of awareness and bravado it is possible to obtain quite tasty sandwiches for free, by hanging around the pickup counter at sub shops and pretending to hold the ticket number that was just called out.
The real security threat in a barcode... by 6Yankee · 2007-12-31 16:10 · Score: 2, Funny

...is the Trojan zebra camouflaged within.