Archive for RFID

Hey IT Nerd! The CBC Says That My Credit Card Info Is Easily Stolen Using Smartphones. How Do I Protect Myself?

Posted in Tips with tags , , on April 25, 2013 by itnerd

I’ll start by explaining where this question comes from. The CBC reported yesterday that credit and debit cards with RFID chips can easily be accessed using smartphones and apps that grab this sort of info. This is called “skimming” and this is something that is common in Europe with not only credit cards, but with RFID enabled passports. I’m not surprised by this as I once had a incident several years ago where I was buying a coffee at Tim Horton’s and I accidentally paid for it using my MasterCard rather than the cash I was intending to use due to the fact that my wallet with my credit card in it was close to the RFID scanner. Not good.

So, how do you stop this from happening? Here’s what I did. I got a wallet that blocks RFID transmissions. has the one that I am currently using. Since Canada is moving towards using RFID enabled passports, I also decided to be ahead of the curve and I got a RFID blocking passport billfold as well for myself and my wife. Speaking of my wife, she got a RFID blocking wallet as well from this site.

Seeing as there are criminals who want this information, it makes sense that you do all you can to protect yourself.

“White Hat” Hacker Clones The Passports And Drivers Licences Of Unsuspecting Americans

Posted in Commentary with tags , on February 2, 2009 by itnerd

The Video below shows a hacker who using a $250 Motorola RFID reader and antenna connected to his laptop managed to read the RFID tags off of drivers licenses, passports and other identity documents that have RFID tags in them. Plus he managed to find and clone TWO passports.


The only good news in this is that he’s a “white hat” hacker which means he’s one of the good guys. The video is meant to show how craptastic RFID is from a security standpoint.

If this video scares you (and it should) here are some products from that will protect you from this sort of thing (I own the wallet myself):

RFID Blocking Wallet

RFID Blocking Passport Billfold

Stainless Steel RFID Blocking Passport Sleeve

Mythbusters Host Backs Away From Comments About Shelved RFID Episode

Posted in Commentary with tags , on September 3, 2008 by itnerd

I’m guessing that Adam Savage got a call from his corporate master boss at Discovery Channel. That’s because he’s backed away from the comments he made about that RFID hacking episode that never happened. Before I get to that, let’s hear what Texas Instruments had to say about Adam’s comments:

“In June 2007, MythBusters was interested in pursuing some great myth-busting ideas for RFID. While in pursuit, they contacted Texas Instruments’ RFID Systems, who is a pioneer of RFID and contactless technology, for technical help and understanding of RFID in the contactless payments space,” Huff said. “Some of the information that was needed to pursue the program required further support from the contactless payment companies as they construct their own proprietary systems for security to protect their customers. To move the process along, Texas Instruments coordinated a conversation with Smart Card Alliance (SCA) who invited MasterCard and Visa, on contactless payments to help MythBusters get the right information. Of the handful of people on the call, there were mostly product managers and only one contactless payment company’s legal counsel member. Technical questions were asked and answered and we were to wait for MythBusters to let us know when they were planning on showing the segment. A few weeks later, Texas Instruments was told by MythBusters that the storyline had changed and they were pursuing a different angle which did not require our help.”

Nothing sinister here. So when that statement got out, Adam came out with this statement:

“There’s been a lot of talk about this RFID thing, and I have to admit that I got some of my facts wrong, as I wasn’t on that story, and as I said on the video, I wasn’t actually in on the call,” Savage said in the statement. “Texas Instruments’ account of their call with Grant and our producer is factually correct. If I went into the detail of exactly why this story didn’t get filmed, it’s so bizarre and convoluted that no one would believe me, but suffice to say…the decision not to continue on with the RFID story was made by our production company, Beyond Productions, and had nothing to do with Discovery, or their ad sales department.”

So, it sounds like the credit card companies didn’t force this story off the air. Of course the Fox Mulder types will say that this is spin to cover up the fact that they did and they don’t want to look like scumbags people with something to hide. So to clear the air, I think it would be a good idea if Adam did go into detail about why this story didn’t get filmed. That way everything is out in the open. 

So, how about it Adam? Will you do that for your fans?

Oh, all of this still doesn’t change the fact that RFID credit cards can be hacked easily using $8 of gear bought from eBay. So no matter what, there’s still a security issue here.

Mythbusters RFID Hacking Episode Hosed By Credit Card Company Lawyers…. Perhaps They Have Something To Hide? [UPDATED]

Posted in Commentary with tags , on September 2, 2008 by itnerd

RFID (click here for a page from Wikipedia explaining what it is) is everywhere. It’s in credit cards, passports, inventory systems, and even is used to track athletes in sporting events like the Ironman. It’s also really hackable, almost frighteningly so actually. Not to mention that there are privacy issues with the technology. But that hasn’t stopped it from being rolled out in a big way. My new MasterCard for example comes with a RFID tag that allows me to “tap” the card against a reader to pay for something. Tim Horton’s among others has these readers installed. So I can pay for my large “double double” easily and without a signature. That’s great for Canadian coffee addicts. But I digress.

The issues with RFID (hacking, privacy, etc) are not well known in the public domain and the Mythbusters show planned to change that by having a show on the topic. That was until the credit card companies lawyered up and forced Discovery Channel to not broadcast the episode.

Here’s a suggestion to the credit card companies: Your customers would be far better off if you spent the money that it cost you to lawyer up on actually improving security so that this isn’t an issue. Maybe then I along with others on the Interwebs wouldn’t have created postings on this topic making you all look like scumbags a bunch of people who have something to hide.

Just to rub some salt in the wound of credit card companies everywhere, here’s a video with Mythbuster Adam Savage explaining the situation as best as he can:

UPDATED: Here’s a video that describes how to hack an RFID credit card using $8 worth of stuff off eBay. No wonder the credit card companies are upset!