Slashdot Mirror

← Back to Stories (view on slashdot.org)

Man Used MP3 Player To Hack Cash Machines

Posted by ryuzaki0 on from the easy-money dept.

Juha-Matti Laurio writes "A man in Manchester, England has been convicted of using an MP3 player to hack cash machines. The MP3 player was plugged into the back of free standing cash machines in bars. Tones being recorded from the phone line were decoded with special software to a readable format. Later this information was used to clone credit cards."

6 of 156 comments (clear)

  1. Re:Police found fake card. by hey! · · Score: 4, Informative
    How does one know if it's a fake credit card?


    By noticing that the name on the card didn't match the name on his driver's license?
    --
    Post may contain irony: discontinue use if experiencing mood swings, nausea or elevated blood pressure.
  2. Re:Not possible in the U.S. by fixer007 · · Score: 5, Informative

    The TDES encryption only encrypts the PIN block. The PAN and other card information is still in the clear.

    This is also mandated in Europe

  3. NO THEY DON'T!!!!! by no+reason+to+be+here · · Score: 4, Informative

    US police DO NOT have the right to search your car for a routine traffic stop. It is a violation of the 4th amendment, and every time a cop asks to search your vehicle without reason, and you let him, you are just throwing your constitutional rights away. If a cop pulls you over because you were speeding or your inspection is expired or because you didn't come to a complete stop at a stop sign, et al, he does not have the right to search your vehicle. I repeat:

    POLICE DO NOT HAVE THE RIGHT TO SEARCH YOUR CAR DURING A ROUTINE TRAFFIC STOP IN THE US!!!

    Now then, if something else is amiss, like say, when the cop turned on his lights, you started throwing bags of white powder out the windows onto the highway median, then he does have the right to search your vehicle.

    --
    my pet machine
  4. Re:Not possible in the U.S. by flawedconceptions · · Score: 4, Informative

    The link is to a story about a guy who reprogrammed an ATM to think it was dispensing 5s while it was actually dispensing 20s. I was able to find the default passwords and re-programming instructions (all in the owner's manual) on the net without much trouble. At least one owner didn't bother to change the default passwords. I wonder how many others failed to do so.

  5. Re:Not possible in the U.S. by xstonedogx · · Score: 4, Informative
    The idea that there's a "magic code" you can enter to edit ATM internals is ridiculous.

    Not when you realize they're talking about a default password.

    Bruce Schneier covered the story in question awhile ago. Lots of good comments on the page, too: http://www.schneier.com/blog/archives/2006/09/prog ramming_atm.html

  6. Re:Not possible in the U.S. by bluephone · · Score: 4, Informative

    "The video of the suspect is a fake. Fixed cameras can't track movement like that. Even a remote movable camera couldn't pan that smoothly. CNN should have the decency to say openly that the video is a dramatization."

    BUT a shoulder-mounted camera held by a cameraman pointed at a CCTV display and zoomed in on the suspect CAN track movement.

    "The idea that there's a "magic code" you can enter to edit ATM internals is ridiculous."

    Agreed, but it's true.

    "In order to edit any ATM internals you need to open the machine"

    Not true. Many kiosk ATMs are programmed from the front panel, there's not always a need to open the machine for various administrative actions.

    "which would give you direct access to the cash ANYWAY."

    Also not true. You can open it but the money is still in locked steel dispenser-cages, and those cages are usually locked into the machine even with the door open.

    --
    jX [ Make everything as simple as possible, but no simpler. - Einstein ]