Section 4.35 Access Badge cloning

Question 1

Access Badge Cloning

Answer 1

Radio Frequency Identification (RFID) and Near Field Communication (NFC) are popular technologies used for contactless authentication in various applications

Copying the data from an RFID or NFC card or badge onto another card or device

Question 2

4 steps

How does an attacker clone an access badge?

Answer 2

Step 1: Scanning - Scanning or reading the targeted individual’s access badge

Step 2: Data Extraction - Attackers extract the relevant authentication credentials from the card, such as a unique identifier or a set of encrypted data

Step 3: Writing to a new card or device - Attacker will then transfers the extracted data onto a blank RFID or NFC card or another compatible device (Flippper Zero device)

Step 4: Using the cloned access badge - Attackers gain unauthorized access to buildings, computer systems, or even make payments using a cloned NFC-enabled credit card

Access badge cloning is common because of its Ease of execution, Ability to be stealthy when conducting the attack and Potentially widespread use in compromising physical security.

Question 3

6 examples

How can you stop access badge cloning?

A.M.U.E.S.A

Answer 3

1. Advanced encryption in your card-based authentication systems
2. Multi-Factor Authentication (MFA)
3. Update your security protocols regulalry
4. Educate your users
5. Shielded wallets / sleeves with your RFID access badges
6. Audit access logs