![]() “ATM security is one of the most technically challenging areas of a financial institution’s operation,” said Mike Lee, CEO of ATMIA, in response to Jack’s presentation. Jack reportedly said he has examined ATMs from four manufacturers, and all of them have vulnerabilities. Jack reportedly hacked the Tranax ATM by reprogramming it over a network. “Scrooge” will also reportedly capture magstripe data embedded in the bank cards people insert into the ATM to make a transaction. This gives the attacker administrative privileges in the ATM, the association pointed out. Once Dillinger has penetrated an ATM, it installs a multi-platform rootkit developed by Jack, which he calls “Scrooge,” according to the ATM Industry Association (ATMIA). Most ATMs are connected this way, he said. Jack reportedly developed an exploit kit he calls “Dillinger” to access ATMs that are connected to the Internet or to phone lines. The manufacturers of the ATMs, Triton Systems and Tranax, have patched the vulnerabilities, Jack found, but he said there are similar flaws in ATMs from other manufacturers. Security researcher Barnaby Jack demonstrated remote hacks against two automated teller machines (ATMs) that made them spew out money at the Black Hat security conference in Las Vegas on Wednesday.Ī large number of ATMs are vulnerable to remote and physical attacks, said Jack, who works for IOActive. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |