Computer Viruses on RFIDs, Fact or Fiction?

   3/17/2006 |  3/17/2006 |  1 Comment
Categories: RFID, Virus & AntiVirus
The Internet Patrol default featured image
Share the knowledge

There’s been a lot in the news lately about computer viruses hiding on RFID chips. It all started when a group of researchers presented a paper this week, entitled “Is your cat infected with a computer virus?”

The paper, written by three computer science researchers with Amsterdam’s Free University, detailed how the three researchers had successfully infected RFID chips with a computer virus, and had made the RFID chips a vector for that virus, meaning that they were able to pass the virus from the RFID chip to other computers.

“Everyone working on RFID technology has tacitly assumed that the mere act of scanning an RFID tag cannot modify back-end software and certainly not in a malicious way. Unfortunately, they are wrong,” explained the paper.

Following their presentation, news outlets around the world reported about the threat of computer viruses spread by RFID, and experts chimed in.

“RFIDs with embedded computers are susceptible to basically all the same threats any other computers are. Unfortunately,” observed Mikko Hypponen of security firm F-Secure.

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

But not everybody thinks that this is a likely risk. For example, Ray Wagner, of the Gartner Group, says that “The likelihood of something like this occurring is extremely low at this point. I don’t expect some kind of RFID virus to appear in the wild anytime soon.”

However, it is not only possible, but, it seems, probably. It seems like the only question remaining is not “if”, but “when?”

The bottom line here, then, is that those who manufacture RFIDs should be thinking about building in some security (presently there is nothing such as a “secure RFID chip”), and sooner would be better.

Get New Internet Patrol Articles by Email!

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

 

More from the Internet Patrol:

New Malware Spam Thanks You for Purchasing and Shopping with Them
New iWorm Worm Specifically Targets OS X - How to Know if Your Mac is Infected
New Windows Ransom Trojan Freezes Computer, Demands Ransom as it Deletes Files
Password to Unlock Files Held Hostage by Ransomware Trojan Revealed
RFID Chips in Your Credit Card: Electronic Pickpocketing - True of False?

Share the knowledge

One thought on “Computer Viruses on RFIDs, Fact or Fiction?

  1. there are some misconceptions floating around about the RFID virus thing… the RFID tags only served as a storage/distribution medium, not unlike a floppy disk or USB flash drive… it’s the software that uses the data on the RFID tags that may be vulnerable to the types of attacks mentioned in that paper…

    specifically, the paper points out that input validation bugs could allow for an arbitrary code execution vulnerability (and they just happened to use ‘viruses’ in order to demonstrate that fact)…

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.