Hacking password-protected Flexxon X-Mask SD card: password in plaintext and more. π«πͺπ¨π»βπ»π±π₯
Security researcher Nicolas Oberli, in his presentation, shares his journey of reverse-engineering and successfully breaking a password-protected SD card called the Flexxon X-Mask.
The research started with the marketing claims that the card is password-protected and that, without a password, it returns empty data blocks instead of the stored files. A classic βhold my beerβ situation :)
What author found:
1οΈβ£ The protection boundary could be changed without knowing the password, allowing nearly the entire card to become readable.
2οΈβ£ This [1] modification persisted after reinserting the card, effectively disabling protection until manually restored.
3οΈβ£ An undocumented SD command that retrieve the userβs password in plain text, with no authentication required. /*facepalm*/
Super interesting research and a very good presentation. Enjoy, and if you have a contact at the company, please encourage them to respond to the authorβs attempts to reach them.
More details:
Mask Off: Analyzing A Secure SD Card [Youtube]: https://lnkd.in/dZTMYjFF
