I was pretty bummed when i heard that TLS (the company behind the dutch OV Chipkaart) had taken down the original site which provided the necessary information to “hack” the card.
The purpose of showing how easy it was to hack the card was not so people could travel for free, but to show how weak the encryption on this card was. That is cause the government wanted to quickly put the card out there to be used and did not want to pay more for the better encrypted version of the card (which would take more time to be used since the stocks were smaller).
And now the original site from the original hacker has been taken down by TLS. The original site http://ov-chipkaart.org/ was owned and maintained by a student who found out how to hack the card. It has been widely broadcasted in the Netherlands how easy it is to hack this card, and to just go after the student with no means to defend himself is just weak. If they wanted to do it right they should sue every network who has broadcasted an article of how easy it is to hack the card, but they chose the easy targets instead..
I think this is very weak by TLS, and I’m not planning on sitting by idle. So therefor I publish the original article from http://ov-chipkaart.org. Cause i believe in a open internet and great people who show great skills are gettingĀ censored by companies with money.. It’s pathetic..
Get the (dutch!) document here: Hacking the OV Chipkaart

Recent Comments