DoD Common Access Cards vulnerable to new hack?

Thursday - 1/19/2012, 5:54pm EST

Randy Vanderhoof, executive director, Smart Card Alliance

Download mp3

The Defense Department's Common Access Cards could be under attack.

Exploiting a previously unknown vulnerability in Adobe software, a new strain of malware attacks the "middleware" of smart card readers, according to SC Magazine, allowing potential hackers to swipe a card's PIN number.

Randy Vanderhoof, the executive director of the Smart Card Alliance, told SC Magazine the vulnerability doesn't specifically target DoD's smart card but the software installed in scanners that actually "read" the card.

Vanderhoof, who said the vulnerability can be combated if that middleware is strengthened, joined In Depth with Francis Rose to discuss what DoD employees should be looking out for.

RELATED STORIES:

Government outpaces private sector in 'smart' identity cards

Agencies using HSPD-12 as 'glorified ID cards'

This story is part of Federal News Radio's daily Cybersecurity Update. For more cybersecurity news, click here.