ATM Hack Gives Cash On Demand 193
angry tapir writes "Windows CE-based ATMs can easily be made to dole out cash, according to security researcher Barnaby Jack. Exploiting bugs in two different ATMs at Black Hat, the researcher from IOActive was able to get them to spit out money on demand and record sensitive data from the cards of people who used them. Jack believes a large number of ATMs have remote management tools that can be accessed over a telephone. After experimenting with two machines he purchased, Jack developed a way of bypassing the remote authentication system and installing a homemade rootkit, named Scrooge."
I see what you did there... (Score:4, Funny)
Editorial standards these days... I ask you...
Pretension (Score:5, Funny)
'ATM machines'? Really?
Re:MSFT Fanboys HURRY! (Score:1, Funny)
Only need one: he didn't hack the OS, only the applications running on top of the OS.
Re:Redundancy (Score:3, Funny)
Re:Pretension (Score:5, Funny)
And he didn't even need a PIN Number
Re:Redundancy (Score:5, Funny)
But who makes the ATMMs?
It's machines all the way down!
Re:Pretension (Score:3, Funny)
Yeah, ATM Machines. Those things that you put your PIN Number into.
Re:Interesting Hacks... (Score:0, Funny)
... all the ATMs were running OS/2.
There was never a time when all ATMs ran OS/2. Besides, OS/2 had its own problems [wikipedia.org].
Re:scrooge? (Score:3, Funny)
Re:Pretension (Score:3, Funny)
Re:Redundancy (Score:3, Funny)
'M' is for Machine (Score:3, Funny)
The summary refers to 'ATM machines.'
I haven't read TFA article, but I wonder if you need a PIN number, or if the exploit uses a VM machine?
Has someone notified the federal FBI bureau?
Re:Pretension (Score:5, Funny)
Re:Interesting Hacks... (Score:4, Funny)
AV on machines that shouldn't need them? yay...
Relevant xkcd [xkcd.com]
Re:Pretension (Score:4, Funny)
Re:Really? (Score:1, Funny)
Tell me: at these 'restaurants', do the 'waitresses' take off their clothes while dancing on a stage?