NFC warning from cyber security giant Kaspersky
According to the statement made by the cyber security company, smartphones rely on NFC technology for smart and fast connections.
NFC tags are widely used in marketing campaigns, public transportation systems and smart home installations to enable fast, contactless interaction. However, this convenience makes it vulnerable to tampering by malicious actors.
Cyber attackers, who can use different methods in this regard, can reprogram NFC tags. When these tags are left unlocked, their contents can be manipulated to redirect users to phishing sites, initiate unwanted actions on their devices, or even deliver malware payloads.
phishing to steal credentials
By physically altering NFC tags, attackers can replace a real tag on a public poster or kiosk in high-traffic areas such as transportation hubs, cafes, or retail stores with a different tag that triggers harmful behavior.
Interacting with a malicious NFC tag can have serious consequences. Phishing attacks, in which users are directed to fake websites designed to steal personal information or login credentials, are among the most common results.
Thus, by exploiting security vulnerabilities in a smartphone’s NFC reader, malicious codes can be run and the security of the device can be compromised.
Malicious NFC tags can also prompt users to download apps or files containing malware that can steal data, monitor activity, or damage the device. Therefore, a seemingly innocuous action like scanning a tampered NFC tag can lead to significant financial problems and loss of privacy.
Increasing threats against NFC tampering threaten the security of users banking from smartphones.
“IT CAN TARGET THOUSANDS OF USERS WORLDWIDE”
Kaspersky Chief Security Researcher Marc Rivero, whose views were included in the statement, stated that NFC technology is incredibly useful, but if users are not careful, NFC is also an important passage point for malicious activities.
“Innocent-looking tags in public spaces can be reprogrammed or modified to perform malicious actions,” Rivero said. “As the adoption of NFC in areas such as payments, public transportation, and marketing continues to expand, we predict that malicious actors will become increasingly sophisticated in their methods over the next few years.” “NFC-related attacks can target thousands of users around the world, especially in urban areas where NFC use is widespread. The way to reduce these risks is through awareness and proactive measures.”