Here is an interesting piece from the ISS X-Force on the viability of RFID based worms.
From ISS(IBM):
A few weeks ago IBM ISS worked with the Georgia Tech Information Security Center (GTISC) to release a paper entitled “Emerging Cyber Threats Report for 2008”. As one of the contributors to the report I subsequently received a number of enquiries concerning some of the content; particularly the RFID security threats.
First of all, you’d have thought that a technology as ubiquitous as RFID would hold few security secrets or concerns – after all, most of us have been living with the technology for several decades already. But that most certainly doesn’t appear to be the case.
While there has been plenty of concern over consumer privacy aspects of RFID use in the retail sector, it looks like only the attendees of conferences such as BlackHat and Defcon have seen some of the darker side of what could be possible in the world of RFID hacking.
The RFID Worm
Without digressing too far, in one thoughtful conversation a link was made to RFID-based malware – worms in particular. From what I understand, sometime last year there was a lot of press attention in Germany about the possibility of an RFID worm threat (and subsequent consumer fear). But at the time of the conversation I hadn’t really given much thought to worms.
Read on.
Tags: RFID, RFID Worms, RFID Attacks, RFID Security
