http://www.rf-dump.org/
http://punto-informatico.it/p.asp?i=49203

the explanation is in italian, but, anyway, it says that with a PDA like pocket pc and an RF reader attached, is possible to go around and read (capture) a card. Then is possible to write all on another card.

This is a great hole for security.

For systems that use cards to pay something, one can write the ID of another in his own card... :(
For systems that use cards to save prices as in a market, in an easy fashon is possible to change the prices...

That becouse they've founde the way to overwrite the protected eeprom.

B7
Posted on 2004-07-30 03:24:54 by Bit7