I Hacked My Laundry Card. Here's What I Learned
a day ago
- #AI
- #Security
- #NFC
- A CS student used a Flipper Zero and AI to reverse-engineer an NFC laundry card.
- The card was a Mifare Classic 1K, widely used by CSC ServiceWorks.
- Discovered an architectural flaw allowing balance restoration after each wash.
- The system's security flaw has been known since 2008 but remains unpatched.
- AI significantly lowered the barrier to exploiting such vulnerabilities.
- Highlighted the broader issue of client-side security in various systems.
- Disclosed the vulnerability to CSC ServiceWorks before publishing findings.
- Noted the lack of incentives for companies to upgrade outdated systems.