funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Windows-based cash machines 'easily hacked'

From: "Kitsune" <kitsune () sbcglobal net>
Date: Tue, 18 Mar 2008 08:27:12 -0700
I didn't mean to imply that I could reach (ping) ATMs that were not part of the customer's network (ie STAR, MAC, etc). 
But to imply that the physical location is irrelevent. If it is the customers machine, it is on (one of) their networks 
which makes it reachable.
    Perhaps your ATM's are on your WAN. Not all banks share your strategy. Some banks have far more ATMs deployed at 
gas stations and malls than branches. Makes the isolated network strategy very easy to pull off.

    kit> I am not the bank, but a contractor. I am also in the US, YMMV. On many of my customer's networks, I can 
easily reach (ping) every ATM in every mall and gas station and branch from any other part of the network. I'm not 
trying to toot my own horn, for I have none, but my customers are quite large. and stupid.


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: