Free laundry hack highlights lack of security

in Bus Pirate, security by Ian | 1 comment

cam0 pried open a laundry smartcard and found an unprotected SPI EEPROM chip. He googled the part number and found a datasheet that describes the chip protocol, then dumped the data with a Bus Pirate. He found the card balance by comparing the contents before and after a load of laundry, the value was stored in plain text. The EEPROM was completely unprotected, so the card could be changed just by following the datasheet.

We obviously can’t and don’t endorse theft of laundry, but this is interesting hack from a security perspective. The manufacture evidently intended this card only for trusted environments, or counted on security through users’ ignorance of electronics. As cam0 notes, this type of card is probably no longer in use. Most common smartcards are encrypted or write protected. The SLE4442, for example, requires a password to change values on the card.

Via Hack a Day, Hacked Gadgets.

This entry was posted in Bus Pirate, security and tagged , , , , .

Comments

  1. DrF says:

    I keep meaning to try and read the odd shaped electric keys we now have that replaced the cards we used to have (same thing different package)… never seem to get around to that :)
    I assume there better protected than this guys laundry card though, since you need a pin to top them up.

    I found it a interesting read, still trying to figure out the BP and its seemingly never ending uses:)

Leave a Comment

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Notify me of followup comments via e-mail. You can also subscribe without commenting.