Mag cards don’t store a lot of bytes; I’d be surprised if you could get much of a virus onto one.
They’re also fixed-format records, so I’d be surprised if there was any attack that could get code off of one and into execution.
Smartcards might or might not be more vulnerable. They have space to store a virus, certainly. But there’s still the problem of persuading the system to execute it.
