BreachExchange mailing list archives
ATMs vulnerable to digital break-ins
From: "B.K. DeLong" <bkdelong () pobox com>
Date: Fri, 22 Sep 2006 12:53:23 -0400
This has been floating around all week if not longer: http://www.schneier.com/blog/archives/2006/09/programming_atm.html but I think it's very important to get the word out as the media seems slow on the uptake. I've received multiple second-hand reports of successes with Triton, tranax and MANY other brands of ATMs with Master Passwords available from manuals found online. - in some cases on the vendor Web sites. Regardless of whether the vendors take it down, they've been out in the wild for who knows how many years and I believe they retain information of transactions in the system accessible in this admin mode.I think of how many kiosk ATMs I've used in the last few weeks at hotels and in the train station etc. Am I over reacting?
_______________________________________________ Dataloss Mailing List (dataloss () attrition org) http://attrition.org/dataloss Tracking more than 146 million compromised records in 361 incidents over 6 years.
Current thread:
- ATMs vulnerable to digital break-ins B.K. DeLong (Sep 22)
- Re: ATMs vulnerable to digital break-ins Chris Walsh (Sep 22)