Expert Comments

Comment: Security Researchers Discover Flaws In U.S. Cash Machines

Expert(s): Security Experts
Expert(s): Security Experts

It has been reported that a pair of security researchers have discovered two vulnerabilities in ATMs widely used across the United States that could allow a determined criminal to steal cash and customer data. They found the flaws in machines manufactured by Nautilus Hyosung America Inc., the largest provider of ATMs in the U.S. By gaining access to the same network as the target ATM, the researchers were able to obtain full control of the machine and bypass its security measures. They also discovered master keys to the ATMs for sale on Amazon.com.

Experts Comments

November 12, 2019
Tim Mackey
Principal Security Strategist, Synopsys CyRC (Cybersecurity Research Center)
Synopsys
All too often when attempting to secure software, there is a tendency to focus on external threats. This leaves the potential for internal threats to be either overlooked or deprioritised. This trust of internal systems and processes can lead to a false sense of security should anyone with the ability to gain access to the network, physical interfaces or maintenance software for a device attempt to breach the system. "In the case of an ATM machine, gaining access to the network used by the.....Read More
All too often when attempting to secure software, there is a tendency to focus on external threats. This leaves the potential for internal threats to be either overlooked or deprioritised. This trust of internal systems and processes can lead to a false sense of security should anyone with the ability to gain access to the network, physical interfaces or maintenance software for a device attempt to breach the system. "In the case of an ATM machine, gaining access to the network used by the machine offers the potential for sensitive data access on many levels and should be a hardened environment. Hardening such an environment for an ATM deployed outside of a banking institution is particularly problematic as the safeguards present within a bank are often weaker. For this reason, those needing cash from an ATM should look to prioritise using ATMs within banks over those in retail or office settings.  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.
SUBMIT

You may also like

Panasonic Becomes Latest Victim Of Data Breach – Security Expert...

Clearview’s £17 Million Fine For Processing 10+ Billion Images Is...

Booz Allen Report On CISOs And China Quantum Computing Risks,...

Experts Reactions On Sky Broadband Hack Warning

Ransomware Set To Break Records This Black Friday 2021

Security Expert On Apple Suing NSO Group

Meta Delays Plans To Rollout End-to-end Encryption

NCSC Issues Black Friday Warning To Tetailers

How The Zelle Fraud Scam Steals Your Bank Credentials

GoDaddy Data Breach Impacts Over A Million Users, Experts Reactions

Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics

Twitter Facebook-f Linkedin Youtube

Working With Us

The Pages

Our Contributing Experts