Comment on Teens Hacked Boston Subway’s CharlieCard to Get Infinite Free Rides

<- View Parent
r00ty@kbin.life ⁨1⁩ ⁨year⁩ ago

Reading the article it seems they made two mistakes. The first was to make the card authoritive instead of having a account data to ensure the information matched. The second was to use a proprietary checksum algorithm instead of using an open secure signature method.

I'd put money on the information they're holding back being details on the checksum algorithm.

source
Sort:hotnewtop