Security researcher Barnaby Jack demonstrated remote hacks against two automated teller machines (ATMs) that made them spew out money at the Black Hat security conference in Las Vegas on Wednesday.
A large number of ATMs are vulnerable to remote and physical attacks, said Jack, who works for IOActive.The manufacturers of the ATMs, Triton Systems and Tranax, have patched the vulnerabilities, Jack found, but he said there are similar flaws in ATMs from other manufacturers.
The Black Hat ATM Caper:
Jack reportedly developed an exploit kit he calls "Dillinger" to access ATMs that are connected to the Internet or to phone lines. Most ATMs are connected this way, he said.
Once Dillinger has penetrated an ATM, it installs a multi-platform rootkit developed by Jack, which he calls "Scrooge," according to the ATM Industry Association (ATMIA). This gives the attacker administrative privileges in the ATM, the association pointed out.
"Scrooge" will also reportedly capture magstripe data embedded in the bank cards people insert into the ATM to make a transaction. Jack reportedly hacked the Tranax ATM by reprogramming it over a network.
Jack reportedly said he has examined ATMs from four manufacturers, and all of them have vulnerabilities.
Once Dillinger has penetrated an ATM, it installs a multi-platform rootkit developed by Jack, which he calls "Scrooge," according to the ATM Industry Association (ATMIA). This gives the attacker administrative privileges in the ATM, the association pointed out.
"Scrooge" will also reportedly capture magstripe data embedded in the bank cards people insert into the ATM to make a transaction. Jack reportedly hacked the Tranax ATM by reprogramming it over a network.
Jack reportedly said he has examined ATMs from four manufacturers, and all of them have vulnerabilities.
No comments:
Post a Comment