Hacker Creates App to Get Into Airline Lounges
Jennifer Billock August 09, 2016
A hacker from Poland created software that produces fake QR codes, allowing him access to any airline lounge.
Warsaw-based Przemek Jaroszewski flies up to 80 times every year, making use of premium airline lounges on his trips. Last year, an automated boarding pass reader mistakenly rejected his access to one of the lounges, so he took matters into his own hands.
Jaroszewski saw an opportunity to come up with an app that would always allow him access to any airline lounge in Europe no matter what his boarding pass says. The Android program creates a fake QR code that mimics a boarding pass, complete with information about traveler name, flight number, class, and destination. He found a security flaw using the app that no one actually checks the scanned data against his actual boarding pass and told Wired that he’s used the app dozens of times with no recourse. The QR codes also work to buy items from duty-free shops.
“Literally, it takes 10 seconds to create a boarding pass,” Jaroszewski told Wired. “And it doesn’t even have to look legit because you’re not in contact with any humans.”
But the app doesn’t always work. The Daily Mail says that the program fails occasionally, and since Jaroszewski has never attempted to use it outside Europe, it might not work in other countries. Plus, the QR codes created by the app cannot mock up a plane ticket—so there’s no risk of illegally boarded flights.
“Whilst this gentleman and others have found a way to forge a boarding pass, they won’t be able to board a flight as airlines will be able to check it against their system,” Chris Goater, a spokesperson for International Air Transport Association, told the Daily Mail. “There isn’t a security implication as you would have to go through security checks anyway. You can create the algorithm that generates the ticket but unless you’re in the airline’s booking system, you won’t be in the system.”
[Photo: Luxury Travel Diary]
@swm61230 Maybe it is time to relax the rules instead, so there won't be smart arses to circumvent them. TSA pre-check/ Separate laptops checks / liquids etc: These must disappear and reliance must be increased on intel rather than airport screeners. Airport screeners should be here to intercept madmen with a gun not organised terrorists.
@KRSW Was denied access to the lounge once. Then made an app to get into any of the lounges no matter if he was supposed to have access or not. That's fraud. You can't only rely on a BP to grant you entry. I carry my membership cards so when that does and will eventually happen you can still access the lounge. Your tsa comment is even worse and honestly they need to find a way to fix that asap if you really can use an older BP to get post security. All these people who try to circumvent the rules just make it harder for the rest of us.
swm61230: Maybe you forgot the first paragraph where he supposedly had a legitimate ticket and was still denied access. I'd agree that if he were smart, he should have kept his mouth shut and keep his program to himself. I do know a few frequent flyers who keep screen shots of their boarding passes w/TSA Pre saved for the times it doesn't show up.
@swm61230 @Ryno1234 and why is that exactly? He did not release "the app" to general public, it's not like you can find his creation on AppStore. He merely made a hypothesis about a vulnerability, tested it and reported that it exists. The ridiculousness of the airport control checks should be under scrutiny not him. Who cares about the lounges - the security implication is that you can get through security gates without a ticket, under bogus name and nobody would even verify it (if you wanted to get into the airport anonymously before you'd have to try much harder - buying the ticket leaves a lot of evidence trail). As to the app - he didn't even have to create one, just use one of many that are already available...
Based on reading this, he decoded a QR and regenerate one just like when you edit a text. From the duty free stuff and using just lounge but too afraid to using anywhere else. I would say pure and simple. This QR has only Name, Status, and Flight just like what TSA see when they scan your BP. He can't gen PNR since it would make an error. So conclusion, to make StarAlliance's BP universally readable they sacrificed security.