Date: September 25, 2025 (GMT +8)

Time: 13:15

Malaysia's Touch 'n Go RFID system powers millions of toll transactions daily – but what if an attacker could silently inflate a card's balance to any value? This talk exposes critical vulnerabilities in a key national payment infrastructure, demonstrating a full practical exploit chain against the Touch 'n Go card using accessible RFID research tools.

We dive deep into the hands-on reverse engineering process: capturing card communication, analyzing proprietary protocols, and uncovering the cryptographic (or algorithmic) flaws enabling arbitrary balance manipulation. See a live demo where we weaponize this research to top up a card with any desired value – no physical theft or complex hardware required.

Beyond the spectacle, this session delivers critical insights for:

Red Teams & Pentesters: Methodology for attacking proprietary RFID systems – signal analysis, protocol fuzzing, and algorithmic reverse engineering.

Security Researchers: Understanding systemic flaws in closed payment ecosystems and credential design.

Defenders & Architects: Concrete mitigation strategies – from cryptographic best practices to transaction anomaly detection – to harden similar systems.

This isn't just theory; it's a wake-up call for the physical-digital attack surface. Learn how everyday RFID technology can become a critical threat vector, and how to defend against real-world attacks targeting payment and access systems.

Speaker

Dennis Goh
Dennis Goh (@RFIDGroup) is the co-founder of the RFID Research Group, where he plays a pivotal role in advancing radio-frequency identification technology.

Under his leadership, the team has developed innovative tools that serve the needs of researchers and professionals in the RFID field. Notable creations include Proxmark3 Rdv4.01, which enhances RFID research capabilities, USBninja—a versatile BadUSB for security tasks—and both ChameleonTiny and ChameleonUltra, which provide powerful functionalities for emulating and testing RFID systems.

In addition to his contributions to RFID technology, Dennis is actively involved in the cybersecurity community. He regularly attends and hosts RFID villages at cybersecurity conferences around the world, fostering collaboration and knowledge sharing among experts. His commitment to education and outreach was highlighted by his role as an arsenal presenter at BlackHat Asia 2024, where he shared insights into advanced RFID applications and their security implications.

Through his work, Dennis strives to push the boundaries of RFID technology and contribute to a safer digital landscape, providing robust solutions that empower users to explore and expand their understanding of the field.

« Back