Story image

Aussie startup pre-empts hackers with smartphone tech that blocks NFC attacks

08 Aug 17

People who have smartphones equipped with NFC capabilities are putting themselves at major risk from identity theft and hacking, according to a statement from Australian startup ARMOURCARD.

The annual cost of identity crime reaching around $2.2 billion according to the Australian Attorney-General’s department, including direct and indirect losses by government agencies and individuals.

Armourcard says that identity hackers in the same area as potential targets can remotely access smartphones through their NFC signal, allowing them to inject malicious code into the phone and exploit it as a spying tool or access information.

This information can then be sold for as little as $6 on the dark web. To combat this type of threat, Armourcard decided to invent Armourcell, a device that sticks to the back of a phone and sends out a jamming frequency that blocks the NFC signal on phones.

The company states that RFID technologies, such as those found in ‘Tap and Go’ cards and ePassports, have made it easier to share information, they are not without risk.

Now mobile phones and digital information make up the new frontier of cybercrime, explains Armourcard founder Tyler Harris.

“It is no longer money alone that’s sought after by criminals but data in the form of photographs, bank details, company information and more. As Australians rely on smartphones to go about their personal and professional transactions, data stored on those devices is the new gold and smartphones will reshape the modern battlefield in the form of identity theft.”

While NFC can be turned off, Harris says that it is constantly on and emitting a signal. Most people don’t realise this fact, he adds.

 “All it takes is for malicious code to be injected through the NFC feature on a smartphone and a hacker pushing out malicious RFID signal to a phone by the RFID chip, to get hold of passwords, photographs, and other personal information. This information can then be distributed or sold on the dark web, bringing unnecessary grief and anxiety to families and individuals. With Armourcell, we are providing smartphone users peace of mind and protecting their data from being compromised,” he says.

The Armourcell is also equipped with a button that can momentarily disable the jamming technology so users can use Tap and Go on their smartphones.

How healthcare can prepare for My Health Record roll-out - Proofpoint
Australia’s healthcare sector is the continent’s biggest cybercrime target, according to a July report from the Australian Information Commissioner.
How DEX aims to guide process-enabled automation strategies
"Although automation is gaining a lot of momentum, there are many instances where early adopters have failed to achieve their business transformation and ROI goals."
Penten & Cyber Security CRC to research 'advanced cyber traps'
The research centres on how advanced cyber traps, which are used to identify data breaches as they happen, can be used in conjunction with tools such as artificial intelligence.
Achieving cyber resilience in the telco industry - Accenture
Whether hackers are motivated by greed, or a curiosity to assess a telco’s weaknesses; the interconnected nature of the industry places it in a position of increased threat
The CISO view on DevOps: How to protect privileged access in the cloud
While security strategies should address privileged access and the risk of unsecured secrets and credentials, they should also closely align with DevOps culture and methods.
Nasuni receives AWS competency status for primary storage
The recognition certifies that Nasuni Cloud File Services meet AWS's strict technical proficiency requirements for primary storage.
How mass data fragmentation impacts business growth and compliance readiness
"About 44% of Australian businesses use six or more solutions to try to manage fragmented data sources and repositories."
LogicMonitor launches container monitoring solutions
Kubernetes monitoring and LM Service Insight provide performance analytics and data retention for microservices and containerised applications.