[ISN] Lock picking with a credit card, a photocopier, and some luck

From: InfoSec News <alerts_at_private>
Date: Wed, 13 Aug 2008 01:21:49 -0500 (CDT)
http://news.cnet.com/8301-1009_3-10011779-83.html

By Elinor Mills
Security - News.com
August 8, 2008

LAS VEGAS -- Don't have special lock-picking skills or equipment but 
want to pick a high-security lock?

A security researcher explained at the Defcon hacker conference here how 
to make a fake key out of a credit card that can open certain types of 
Medeco M3 locks used in the White House, Pentagon, and high-security 
areas around the world.

You need to make a picture of a legitimate key to have an image to 
transpose onto the plastic, which means an insider or someone with 
access to the key would need to cooperate, said Marc Weber Tobias, a 
lawyer who has written a book about breaking into high-security Medeco 
locks called Open in Thirty Seconds.

Basically, someone could grab an image of the key with a camera, cell 
phone, copy machine or scanner, print the image on a label or sheet of 
plastic, and cut along the outline with an X-Acto knife.

"Everybody has known about this forever with conventional locks, like 
Kwikset," Tobias said. "But high-security locks advertise that they have 
key control, especially Medeco."

[...]


__________________________________________________      
Visit Defcon Pics - Defcon Memory Repository 
http://www.defconpics.org
Received on Tue Aug 12 2008 - 23:21:49 PDT

This archive was generated by hypermail 2.2.0 : Tue Aug 12 2008 - 23:27:00 PDT