LifeNewsShowbizSocietyEntertainmentSuperstitions

Vulnerability Discovered in Hotel Room Key Cards Worldwide

By Jurassic JennAug 25, 2024 16:37 PMTech
Share:
Hardware Security. Source: https://thehackernews.com/

Security experts have revealed significant vulnerabilities in contactless cards, which are commonly used in hotel rooms and office buildings worldwide. These flaws, found in the cards' RFID technology, would allow unauthorized individuals to open doors easily.

Researchers from Quirkslab centered their analysis on the FM11RF08S card, a variant of the widely-used and older MIFARE Classic card, launched in 2020 by Shanghai Fudan Microelectronics, which is known for manufacturing 'MIFARE compatible' chips without a proper license. While the FM11RF08S was touted to contain mechanisms that counter all previous card-only attacks, the use of this card proliferates, raising substantial security concerns.

Alarmingly, it took the researchers a matter of minutes to devise an attack that can compromise the FM11RF08S sector keys, especially when the keys were reused across multiple cards. They discovered a hardware backdoor that could authenticate the card with an unknown key. Further analysis led to the revelation that this backdoor is common across all FM11RF08S cards.

Hotel room key card
Hotel room key card

By using this backdoor, researchers could execute various attacks, all of which could breach all card keys within a few minutes without prior knowledge of initial keys, relying only on the backdoor key. Furthermore, older models, particularly the FM11RF08 introduced in late 2007, were similarly compromised, with the secondary key also proving common across all cards within this generation and other associated types like FM11RF32 and FM1208-10.

A hardware backdoor in these cards raises the threat that an attacker with direct access to the card could clone it rapidly, posing supply chain attack risks. An optimized attack could even amplify the attack speed five to six times by reverse-engineering the nonce generation mechanism.

Philippe Teuwen from Quirkslab confirmed, "the FM11RF08S backdoor compromises all user-defined keys, facilitating swift unauthorized card access." Additionally, issued similar alerts regarding older, noted vulnerabilities including one in Dormakaba's Saflok RFID locks revealed to have exploitable deficiencies as recently as March.

Users of MIFARE Classic technology should evaluate their systems' risks since these cards appear prevalent in hotels throughout the U.S., Europe, and India, unbeknownst to many that their card infrastructure incorporates potentially compromised Fudan FM11RF08 or FM11RF08S cards. Thus, infrastructures utilizing these cards should undergo security assessments to mitigate these emergent risks.

Earlier, SSP wrote that Peloton integrated Kindle: a perfect blend of workout and reading.

Tech
Share:
Home/Tech/Vulnerability Discovered in...
Top Articles

The meaning of the name Ava and its spiritual meanings

Sep 13, 2024 16:15 PM

Symbolism and power of the mockingbird totem animal: your spiritual encounter

Sep 13, 2024 12:16 PM

Twitching left or right eyebrow: spiritual meanings of the omen

Sep 13, 2024 08:41 AM

Symbolism and spiritual meaning of centipede encounter

Sep 11, 2024 15:21 PM
More News

Marseille Confirm Agreement with Free Agent Adrien Rabiot

Sep 17, 2024 21:59 PM

Justin Timberlake Pleads Guilty and Urges Against Drinking and Driving

Sep 17, 2024 21:38 PM

Influential Friendships Await Three Zodiac Signs

Sep 17, 2024 21:16 PM

Want to Get into Vinyl? 3 Great Beginner Turntable Systems to Get You Started

Sep 17, 2024 20:53 PM

5 of the Best Fall Movies

Sep 17, 2024 20:12 PM

Engaging in relaxation activities: horoscope for the second part of September

Sep 17, 2024 19:54 PM

A Shy Penguin Wins New Zealand’s Bird Election Amid Memes and Tattoos

Sep 17, 2024 19:08 PM

Tottenham Hotspurs Manager Postecoglou Confident in Second-Year Succes

Sep 17, 2024 18:25 PM

Three Zodiac Signs Set for New Opportunities

Sep 17, 2024 18:03 PM

The Secret Behind Your Cat's Sense Of Smell

Sep 17, 2024 17:42 PM

Is It Safe to Eat Sprouted Potatoes? What Experts Say

Sep 17, 2024 17:21 PM

The 5 Weirdest and Wildest Stunts Crowned by Guinness World Records in 2024

Sep 17, 2024 16:59 PM

Matter is Revolutionizing Your Smart Home – What You Need to Know

Sep 17, 2024 16:39 PM

Prioritising practical aspects of love: horoscope for the second part of September

Sep 17, 2024 16:18 PM

5 Funny Horror Movies to Watch for a Bloody Good Time

Sep 17, 2024 15:56 PM

Doja Cat's Artistic Evolution: Striving Beyond Pop to Explore Diverse Genres

Sep 17, 2024 15:36 PM

Chicken with Peaches – One-Pan 30-Minute Meal

Sep 17, 2024 15:13 PM

Tech Billionaire Returns to Earth After Historic Spacewalk

Sep 17, 2024 14:51 PM

Significant Self-Discoveries Await Three Zodiac Signs

Sep 17, 2024 14:08 PM

Adorable Baby Hippo Moo Deng Becomes Overnight Celebrity

Sep 17, 2024 13:47 PM

Europe's Solheim Cup Comeback Falls Short as Pettersen Faces No Regrets

Sep 17, 2024 13:25 PM

Teenager Builds Robot to Solve Rubik's Cube

Sep 17, 2024 13:03 PM

Three zodiac signs will embrace humor and light-heartedness: horoscope for September 17

Sep 17, 2024 12:42 PM

Radiating a sense of warmth and encouragement with family: horoscope for the second part of September

Sep 17, 2024 12:23 PM

Celestial Phenomenon and Cultural Beliefs About Solar Eclipses

Sep 17, 2024 12:04 PM

Spot the Snake: A Challenge for Keen Observers

Sep 17, 2024 11:37 AM