The presentation discusses vulnerabilities in Samsung's NFC chips and how they can be exploited to gain access to 13.56 MHz access controls. The speaker also talks about the process of developing custom firmware for proprietary chips and the potential for finding undisclosed vulnerabilities in old chips.
- Samsung's NFC chips have vulnerabilities that can be exploited to gain access to 13.56 MHz access controls
- Custom firmware can be developed for proprietary chips to add functionality
- Undisclosed vulnerabilities in old chips are likely to be present in new chips
The speaker describes how they were able to fully implement My Fair Classic on a Samsung S9 by modifying the firmware and sending nine bit values into eight bit buffers. This allowed them to spoof any 13.56 MHz access control. The vulnerability required root access, but the chip was compromised in ways that made it much more useful than it would be as standard.