Re[2]: OT: ATM PIN code theft
- From: Valentin Likoum <valentin.likoum@xxxxxxxxxxxx>
- Date: Thu, 3 Jul 2008 08:45:49 +0500
On 02.07.2008 VAXman-@xxxxxxxxxxxxxxxx <VAXman-@xxxxxxxxxxxxxxxx> wrote:
In article <op.udn2kmn6hv4qyg@xxxxxxxxxxxxxxxxxxxxxxxxxxx>, "Tom
Linden" <tom@xxxxxxxxxxxxxx> writes:
http://www.cbsnews.com/stories/2008/07/01/national/main4226061.shtml
It occurs to me that one should check what type of systems your bank
uses. I have an account at a bank that runs IIS on their front-end
as a result I never use that ATM card. BoA, last I chewcked was all
IBM.
Look again or in the near future. My bank (BofA) recently replaced
its ATMs with new machines. The machine which was accessible from
outside the bank -- not the lobby machine -- was found in a perpet-
ual Weendoze Reboot cycle one day when I approached it. Scarey...
VERY SCAREY!
It's too late to afraid. All modern ATMs I know about are using
Windows inside them. At least here, in Europe. But the subject story
looks very unclear. All normal ATMs (not sure for Citibank's) don't
passed PIN in clear outside their PIN-pad. PIN is thrown outside this
hardware encrypted with DES (obsolete) or 3DES (modern) and encryption
keys are changed on regular basis. So you could hack ATM or even break
it by parts but it doesn't help you to get clear PINs. The real life
is much more simple - bad guys are using add-on on the card reader
and faked PIN pad over the real one. No need to hack anything.
--
Best regards,
Valentin
valentin.likoum@xxxxxxxxxxxx
.
- Prev by Date: Re: Backup/Image/NoInitialize gives %BACKUP-I-LOGNOTPRES ...
- Next by Date: Re: OT: Disturbing thoughts on creation of the universe
- Previous by thread: Re: OT: ATM PIN code theft
- Next by thread: And the winner of the XP1000 Lottery is....
- Index(es):
Relevant Pages
|
