Hacker tells all about how to exploit Mifare Classic vulnerability

The cat is out of the bag. A full implementation of the algorithm to break the already compromised Mifare Classic RFID implementation has been published and is now available for download (pdf) from the Internet. According to RFID researcher Karsten Nohl, this new information, taken together with an earlier scientific paper on the flaws of the Mifare Classic will make it possible for "anyone" to implement real-world attacks. All that is required now is a $100 card reader and a little software. It is hard to know how things will turn out from now on: There are at least 60 or so major citywide RFID implementations that rely on the Mifare Classic technology, including subway systems in Amsterdam, Boston, Bangkok, and Delhi.

For more on this news:
- check out this article from CNET News