BadB
Professional
- Messages
- 2,488
- Reaction score
- 2,533
- Points
- 113
The NFCdrip attack poses a threat not only to Android devices, but also to laptops and other types of gadgets.
Checkmarx specialist Pedro Umbelino demonstrated a new method called NFCdrip, which allows you to transfer small amounts of data (passwords or encryption keys) over relatively long distances using NFC technology.
The NFC Protocol allows two devices to communicate with each other at a distance of up to 10 cm. This technology, which is implemented in many modern smartphones, is used for making payments, authenticating or sharing files. As Umbelino found out, in reality, the technology is able to work over longer distances and can be effectively used to covertly extract data from physically isolated devices with Wi-Fi, Bluetooth or GSM disabled.
The NFCdrip attack involves changing the NFC operation mode for data modulation. In the case of the Android OS, you don't even need special permissions to change the mode, the researcher noted. NFCdrip uses on-off keying, one of the simplest forms of amplitude manipulation, where the presence of a signal is considered as 1 bit and the absence as 0 bits.
In the course of his experiments, the researcher demonstrated how malware installed on an Android device can be used to transmit a password to another Android gadget connected to a simple AM receiver, located at a distance of tens of meters. Data is easily transmitted over a distance of 2.5 meters at a speed of 10-12 bits per second. When transmitting over a distance of 10 meters, errors occur, but, according to Umbelino, they can be corrected. When transmitting over long distances, the signal weakens and a large number of errors occur, but the expert still managed to transmit some data over a distance of more than 60 meters. This value can be increased if you use an AM antenna and an SDR receiver.
According to the expert, the method can work on devices in "airplane mode" and poses a threat not only to Android devices, but also to laptops and other types of gadgets.
Checkmarx specialist Pedro Umbelino demonstrated a new method called NFCdrip, which allows you to transfer small amounts of data (passwords or encryption keys) over relatively long distances using NFC technology.
The NFC Protocol allows two devices to communicate with each other at a distance of up to 10 cm. This technology, which is implemented in many modern smartphones, is used for making payments, authenticating or sharing files. As Umbelino found out, in reality, the technology is able to work over longer distances and can be effectively used to covertly extract data from physically isolated devices with Wi-Fi, Bluetooth or GSM disabled.
The NFCdrip attack involves changing the NFC operation mode for data modulation. In the case of the Android OS, you don't even need special permissions to change the mode, the researcher noted. NFCdrip uses on-off keying, one of the simplest forms of amplitude manipulation, where the presence of a signal is considered as 1 bit and the absence as 0 bits.
In the course of his experiments, the researcher demonstrated how malware installed on an Android device can be used to transmit a password to another Android gadget connected to a simple AM receiver, located at a distance of tens of meters. Data is easily transmitted over a distance of 2.5 meters at a speed of 10-12 bits per second. When transmitting over a distance of 10 meters, errors occur, but, according to Umbelino, they can be corrected. When transmitting over long distances, the signal weakens and a large number of errors occur, but the expert still managed to transmit some data over a distance of more than 60 meters. This value can be increased if you use an AM antenna and an SDR receiver.
According to the expert, the method can work on devices in "airplane mode" and poses a threat not only to Android devices, but also to laptops and other types of gadgets.
