Canadian government lifts ban on Flipper Zero, only covers 'illegal' use cases
Canada Walks Back Ban of Flipper Zero, Targets 'Illegitimate' Use Cases | PCMag
https://www.pcmag.com/news/canada-walks-back-ban-of-flipper-zero-targets-illegitimate-use-cases
Flipper Zero makers respond to Canada's 'harmful' ban proposal
https://www.bleepingcomputer.com/news/security/flipper-zero-makers-respond-to-canadas-harmful-ban-proposal/
Flipper Zero is an open source device that supports a wide range of frequency bands and wireless standards such as NFC, Bluetooth, and infrared communication, and is officially called ``Tamagotchi for hacking''. Flipper Zero can analyze and store signals from wireless devices, so it can be used to open and close garage doors, unlock electronic locks, and replace infrared remote controls. . Flipper Zero's usage situations, detailed specifications, sales price, etc. are summarized in the article below.
``Flipper Zero'' remote control device that supports a wide range of frequency bands, NFC, Bluetooth, and infrared rays - GIGAZINE
Flipper Zero can analyze and store signals from wireless devices, so it can be used as a substitute for various wireless devices. In particular, the method of duplicating a car's smart key with Flipper Zero has attracted attention, and a method has even been devised to steal a Tesla electric car with Flipper Zero.
A method is devised to steal Tesla's electric car with the wireless operation device ``Flipper Zero'' - GIGAZINE
Other attacks using Flipper Zero to make iPhones unusable and attacks to destroy electricity meters have been announced, and there is a movement to view Flipper Zero itself as dangerous, and Brazilian regulatory authorities have seized imports. It was also banned from being sold on Amazon. Following this, Canada announced a policy to ban the import, sale, and use of Flipper Zero.
The Canadian government bans the Tamagotchi-like multifunctional device ``Flipper Zero'' in response to the rapid increase in car theft - GIGAZINE
However, on Wednesday, March 20, 2024 (local time), Innovation, Science and Economic Development Canada (ISED), which regulates wireless equipment and information equipment in Canada, told foreign media PCMag that the Canadian government's policy regarding Flipper Zero. I have clearly explained my position.
ISED states that it ``prohibits the illegal use of wireless devices for car theft,'' and explains that it does not intend to regulate Flipper Zero itself, but to prohibit the illegal handling of Flipper Zero. 'Our aim is to take steps to restrict the use of devices like Flipper Zero to only legitimate actors. Therefore, their import, possession, sale or use by illegal actors is not permitted,' ISED said in a statement. ``ISED is already working with Canadian businesses, online retailers, and the auto industry to address this issue, and we expect to announce concrete plans in the near future.''
Furthermore, on March 19th, just before ISED announced its clear stance on Flipper Zero, Flipper Devices, the developer of Flipper Zero, declared that the Canadian government's ban on Flipper Zero was unfair and made it illegal. A petition has been launched to oppose the.
Our Response to the Canadian Government
In this, Flipper Devices claims, ``We need the community's cooperation to counter the Canadian government's move to ban Flipper Zero.'' He also posted, ``You don't need Flipper Zero to hack wireless protocols. All you need is a wire. There is also a way to receive and decode 433MHz wireless signals using just your PC's sound card.'' He also claimed that there are multiple ways to hack wireless networks.
Btw, you don't need a Flipper Zero to 'hack' dumb radio protocols. The piece of wire is enough.
— Flipper Zero (@flipper_zero) March 20, 2024
Check out how to receive and decode 433MHz radio signal just with a PC sound card. pic.twitter.com/9zLN2pMnoY
Pablo Zobner, CEO of Flipper Devices, added: 'Proposals like this are usually made by people who don't really understand how security works. Banning Flipper Zero will not solve the auto theft problem. It's of no use.'
ISED aims to ``only prevent illegal actors from obtaining Flipper Zero without affecting market distribution.'' However, PCMag points out that the method is unclear. In addition, some reports have reported that the Canadian government may purchase Flipper Zero in the form of a license.
When PCMag asked Flipper Devices for comment on the Canadian government's statement, they responded, ``While it is unclear how it will work technically, we definitely support this update.'' I am.
Some security researchers have created a method called a 'rollback attack' that uses Flipper Zero to bypass the rolling code of smart car keys, which has become a hot topic. This involves capturing continuous radio signals from smart keys, but Flipper Devices claims that ``this type of attack is extremely difficult to perform in practice.'' He also urged the Canadian government to 'focus on forcing automakers to fix security flaws, rather than outlawing tools that can be used to find vulnerabilities.' .
PCMag also reached out to security researcher Levente Csikor, who developed the rollback attack, for comment. He said, 'Flipper Zero allows users to test out widely known attacks, such as rollback attacks on cars. However, for individuals looking to steal vehicles for malicious purposes, Flipper Zero is not an effective method because Flipper Zero has limited wireless range. 'In order to capture the smart key signal with Flipper Zero, it is necessary to get close to the smart key itself, so it is not suitable for targeted vehicle theft carried out from a remote location.'
According to Flipper Devices, actual vehicle theft criminals use more powerful wireless repeaters that cost hundreds of thousands of yen.
Related Posts:
in Hardware, Posted by logu_ii