A relay attack is a type of cyber attack where attackers intercept and relay communication between two parties who are meant to be communicating directly. This attack is commonly used to bypass security measures, such as keyless entry systems in vehicles and contactless payment systems.

A relay attack works by taking advantage of the communication between two legitimate parties. Here is a step-by-step explanation of how it typically occurs:
Placement of Devices: The attacker places two devices within the communication range of the legitimate parties, such as a key fob and a car in the case of keyless entry systems. These devices may be physical objects or software-based tools designed to intercept and transmit signals.
Signal Capture: The first device captures the signal from one party (e.g., the car's key fob) and then relays it to the second device. This is done by either amplifying the captured signal or submitting it to a remote location for further processing.
Signal Transmission: The second device, which is closer to the targeted system (e.g., the car), transmits the captured signal to establish communication with the system. The targeted system receives the signal and processes it as if it is coming from a legitimate source.
Unauthorized Access or Transactions: As a result of the successful relay attack, the targeted system is deceived into believing that the legitimate party is in close proximity. This deception allows the attacker to gain unauthorized access or perform unauthorized transactions, depending on the specific exploit being carried out.
The success of a relay attack relies on the ability of the attacker to relay the signals quickly and effectively, creating the illusion of proximity between the two legitimate parties. By exploiting this vulnerability, attackers can bypass security measures that rely on the assumption of direct communication between parties.
To protect against relay attacks, consider the following preventive measures:
Device Security: Stay informed about the security features of devices that use wireless communication. Regularly check for firmware updates or security patches and apply them as soon as they are available. Additionally, ensure that the devices you use have built-in security measures to prevent unauthorized access.
Additional Security Measures: Where possible, consider using additional security measures in conjunction with keyless systems and contactless payment methods. Examples include using PINs or biometric verification to provide an extra layer of authentication.
Relay Attack Protection Technologies: Employ the use of relay attack protection technologies, such as Faraday pouches or signal-blocking wallets. These devices create a physical barrier that blocks communication between devices when they are not in use, preventing relay attacks.
By implementing these preventive measures, individuals can reduce the risk of falling victim to relay attacks and enhance the security of their wireless communication devices.
Related Terms
Man-in-the-Middle (MitM) Attack: An attack where the attacker secretly intercepts and relays communication between two parties. While a relay attack is a specific type of man-in-the-middle attack, not all man-in-the-middle attacks involve relay attacks.
Near-Field Communication (NFC): The technology that enables devices to communicate wirelessly when they are in close proximity. NFC is commonly used in contactless payment systems and plays a significant role in relay attacks.
Faraday Pouch: A protective pouch that blocks all electromagnetic signals, preventing unauthorized access or tracking of wireless devices inside it. Faraday pouches are one of the effective measures to prevent relay attacks by isolating the devices from external communication.