RFID cards could turn into a global security mess after discovery of hardware backdoor

RFID cards with Chinese-made chips have hardware backdoors, posing global security risks.

: Security researchers discovered hardware backdoors in Chinese-made RFID cards compatible with Mifare protocol. These vulnerabilities allow attackers to clone access cards used worldwide. Backdoors affect millions of cards, including those in the US, Europe, and India. Alternatives free from these issues are available.

Security researchers at Quarkslab revealed that Chinese-made chips in widely-used RFID cards are fraught with hardware backdoors. These chips, compatible with the Mifare protocol from NXP Semiconductors, allow attackers to clone cards quickly.

Philippe Teuwen identified that the FM11RF08S chip has a backdoor, making all user-defined keys vulnerable when attackers access the card shortly. This issue affects older and newer generations of RFID cards, including those used in hotels and office buildings globally.

Quarkslab’s findings highlight significant risks associated with relying on these insecure technologies. More secure and backdoor-free alternatives for RFID-based security systems are already available on the market.