Fraud attempt

**Moscow Mule** · 24 March 2010, 13:06

Originally posted by minestrone View Post

And to all you hacking experts how are they gong to hack that level of card encryption? Incognito already said what the resources were to do it and you all just ignored it.

That is a brute force attack, which is ludicrously difficult.

IIRC they cracked the oyster card encryption with a little bit of insider knowledge and some computers quite quickly.

I don't profess to be an expert in this field, but it seems to me that I'm doing things on my phone today that would have taken weeks on a mainframe just 5-10 years ago and what is uncrackable now might not last that long....

**minestrone** · 24 March 2010, 13:33

Originally posted by Moscow Mule View Post

That is a brute force attack, which is ludicrously difficult.

IIRC they cracked the oyster card encryption with a little bit of insider knowledge and some computers quite quickly.

I don't profess to be an expert in this field, but it seems to me that I'm doing things on my phone today that would have taken weeks on a mainframe just 5-10 years ago and what is uncrackable now might not last that long....

They scraped the card down to the circuit board and worked out how it was programmed using some kind of super electroscope, hardly the work of an Algerian scammer. The problem is though that they are not using the mifare card that was compromised.

I just still cannot believe the level of naivety that pervades about these crimes, it is shockingly easy to get someones identity, the fact that it has not been done to you is that nobody has tried it yet.

People are getting screwed all over the place, banks are getting screwed over, the benefits system are getting well screwed over because they still rely upon trust believe it or not.

"I'm Joe Bloggs, I want to claim JSA"

"OK Joe, have a seat"

You are given a one stop shop to stop nearly all of these problems in one go and you are all against it for various small minded reasons.

**Scary** · 24 March 2010, 13:46

Like the chip and PIN system which made card fraud impossible. Until it wasn't. http://en.wikipedia.org/wiki/Chip_an...ble_by_default

**minestrone** · 24 March 2010, 13:56

Originally posted by Scary View Post

Like the chip and PIN system which made card fraud impossible. Until it wasn't. http://en.wikipedia.org/wiki/Chip_an...ble_by_default

Chip and pin was crap and everyone knew it before it went in but even though it is crap it has still worked well in cutting down fraud as it put on another layer of security.

The new cards are on a completely other level of encryption and as I said already you cannot memorise or change someone's hand print which is the pin in this case.

**Churchill** · 24 March 2010, 14:04

Originally posted by minestrone View Post

They scraped the card down to the circuit board and worked out how it was programmed using some kind of super electroscope, hardly the work of an Algerian scammer. The problem is though that they are not using the mifare card that was compromised.

The Chinese have been known to do exactly that.

**threaded** · 24 March 2010, 14:08

Originally posted by minestrone View Post

They scraped the card down to the circuit board and worked out how it was programmed using some kind of super electroscope, hardly the work of an Algerian scammer. The problem is though that they are not using the mifare card that was compromised.'

Just to let you know: the Algerian scammer is better funded than a couple of researchers in a lab.

Have a look at the component costs for an ATM skimmer, and those chummies buy in bulk too.

The microscope doesn't even need to be a very good one in the great scheme of things, only the cheapest don't come with a polariser nowadays, and a decent pair of sunglasses will provide that.

**minestrone** · 24 March 2010, 14:14

The mifare card is pretty much the cheapest of the cheap when it comes to a card system.

I put my wallet down next to a mifare card printer and it managed to wipe my feckin football season ticket FFS.

**Churchill** · 24 March 2010, 14:15

Originally posted by minestrone View Post

The mifare card is pretty much the cheapest of the cheap when it comes to a card system.

I put my wallet down next to a mifare card printer and it managed to wipe my flipin football season ticket FFS.

Yes!!! It worked!

Softly softly...

**Moscow Mule** · 24 March 2010, 14:24

Originally posted by minestrone View Post

You are given a one stop shop to stop nearly all of these problems in one go and you are all against it for various small minded reasons.

I don't think anything you tell me about encryption on a card is going to persuade me that this will do anything but add an extra layer of bureaucracy to an already bloated system.

Nothing you tell me will persuade me that having 50+ points of data on everybody in a national database is a good idea.

Nothing you tell me about the potential benefits outweighs the potential loss to liberty these plans represent (in my eyes).

Edit: and if that makes me small minded in your eyes, then I'm glad your season ticket was wiped :P

**Scary** · 24 March 2010, 14:31

On the other hand it's a nice little earner if your name is Mr Accenture, and a nice source of employment for our cousins in Bangalore etc.

Fraud attempt

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Partners

Advertisers

Contractor Services

CUK News

Fraud attempt

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Partners

Advertisers

Contractor Services

CUK News

Tag Cloud