Text Size
- Home
-
News
Advanced computing news from Communications of the ACM, other ACM resources, and from around the Web.
- Blogs
- Opinion
-
Browse by Subject
Recent articles from Communications organized into categories that encompass the broad scope of computing.
-
Magazine Archive
-
Careers
Jump-start your career with information on trends, opportunities and jobs – in both industry and academia.
- ACM Resources
-
Subscribe
Receive the benefits of ACM membership with a subscription to its flagship publication, Communications of the ACM.
This Article
ACM TechNews
Flaw Opens ATMs to Hackers
![[article image]](/system/assets/0000/1063/070909_DNBD_ATM.large.jpg?1247169256&1247169253 "ATM")
Credit: Delaware National Bank of DehliA
Juniper security researcher Barnaby Jack canceled plans for a live demonstration of the insecurity of automatic teller machines (ATMs) at the upcoming Black Hat Security Conference due to pressure from ATM manufacturers and concerns that some vulnerabilities have not yet been fixed. "The vulnerability Barnaby was to discuss has far-reaching consequences, not only to the affected ATM vendor, but to other ATM vendors and — ultimately — the public," says Juniper's Brendan Lewis. "To publicly disclose the research findings before the affected vendor could properly mitigate the exposure would have potentially placed their customers at risk."
The presentation was going to focus on exploiting vulnerabilities in devices running the Windows CE operating system, including some ATMs. Many security experts are not surprised that the vulnerabilities exist. TrustWave's Nicholas Percoco says major flaws in cash machines and ATM networks are numerous.
ATMs have been the focus of a number of high-profile security incidents during the past 12 months, including the theft of nearly $9 million from more than 130 cash machines in only a few hours using fake payroll cards in 49 cities worldwide. In January, Diebold warned customers that certain cash machines in Eastern Europe had been loaded with malicious software capable of stealing financial information and customer PINs. Nearly 65 percent of ATMs in the United States run some form of the Windows operating system.
From Technology Review
View Full Article
Abstracts Copyright © 2009 Information Inc., Bethesda, Maryland, USA 
Sign In To Comment On This Article
Create A Web Account
If you are an ACM member, Communications subscriber, Digital Library subscriber, or use your institution's subscription, please set up a web account to access comments, premium content and additional site features.
If you are a SIG member or member of the general public, you may set up a web account to comment on free articles and sign up for email alerts.
Tools For Readers
Related ACM Resources
Conferences:
- VLSI 2010: 23rd International Conference on VLSI Design & 9th International Conference on Embedded Systems - January 3, 2010 – January 7, 2010; Bangalore, India
Books:
- GPU Gems 3 - Hubert Nguyen
Courses:
- Secure Connectivity - The Secure Connectivity course allows you to support an organization's applications and security requirements by integrating the firewall system with other networking services in the …
About Communications |
Join ACM 
|
Renew |
Subscribe |
Sign In |
For Authors |
For Advertisers |
Privacy |
Site Map |
Help |
Contact Us
Copyright © 2009 by the ACM. All rights reserved.