Cybercriminals Refine ATM Data-Sniffing Software

← Back to Stories (view on slashdot.org)

Cybercriminals Refine ATM Data-Sniffing Software

Posted by CmdrTaco on Thursday June 4, 2009 @03:00AM from the win-atm-lose dept.

BobB-nw writes "Cybercriminals are improving a malicious software program that can be installed on ATMs running Microsoft's Windows XP operating system that records sensitive card details, according to security vendor Trustwave. The malware has been found so far on ATMs in Eastern European countries, according to a Trustwave report. The malware records the magnetic stripe information on the back of a card as well as the PIN, which would potentially allow criminals to clone the card in order to withdraw cash. The collected card data, which is encrypted using the DES algorithm, can be printed out by the ATM's receipt printer, Trustwave wrote."

21 of 257 comments (clear)

Min score:

Reason:

Sort:

DES by bluefoxlucid · 2009-06-04 03:03 · Score: 3, Funny

DES doesn't really mean "Designed Extremely Secure" ....

--
Support my political activism on Patreon.
1. Re:DES by ls671 · 2009-06-04 06:04 · Score: 2, Funny
  
  My PIN is 7117, what then?
  
  --
  Everything I write is lies, read between the lines.
2. Re:DES by Anonymous Coward · 2009-06-04 06:37 · Score: 1, Funny
  
  I'd rather be robbed and not used as http://it.slashdot.org/story/09/06/04/1424210/Cybercriminals-Refine-ATM-Data-sniffing-Software?from=rss#a human sheild, but each to their own i guess ;p
Windows XP? by Anonymous Coward · 2009-06-04 03:05 · Score: 5, Funny

..."on ATMs running Microsoft's Windows XP operating system..."
Let me be the first to say "ur doin it wrong."
Stupid stupid users by Anonymous Coward · 2009-06-04 03:07 · Score: 3, Funny

When your ATM asks if you want to install an ActiveX control, you always say "no."
How many years do I have to keep telling them that?
Re:ATM != desktop computer by PrescriptionWarning · 2009-06-04 03:09 · Score: 3, Funny

but how else is Microsoft supposed get Office 2009 - ATM edition to market? And just think, Clippy could be a money clip instead of a paper clip! The bottom line is it's win-win in this rough riding tsunami wave of data mining nugget pack of wolves devouring economy for today's business-ready customer driven shim-sham!
Re:ATM != desktop computer by Ethanol-fueled · 2009-06-04 03:11 · Score: 4, Funny

I'm waiting for the ATM that runs Mac OS X!
They already have those in San Francisco. They're called "gAyTMs"
Mac OSX on the ATM by rliden · 2009-06-04 03:13 · Score: 1, Funny

"Hi!, I'm an ATM."

--
Don't think of it as a flame, more like an argument that does 3d6 fire damage.
Re:ATM != desktop computer by Eggz+Factor · 2009-06-04 03:14 · Score: 1, Funny

As much as I like the Mac OS, I don't think I want a "lickable" ATM. :-P

--
blah, blah, blah...
Re:ATM != desktop computer by Spazztastic · 2009-06-04 03:16 · Score: 4, Funny

I'm waiting for the ATM that runs Mac OS X!
They already have those in San Francisco. They're called "gAyTMs"
A2Ms?

--
Posts not to be taken literally. Almost everything is sarcasm.
At least it's not Vista . . . by PolygamousRanchKid+ · 2009-06-04 03:19 · Score: 4, Funny

"Are you sure you want to withdraw this money?"
"Will you spend it wisely?"
"You don't seem to have much left, have you planned for an emergency?"
. . . etc. . . .

--
Schroedinger's Brexit: The UK is both in and out of the EU at the same time!
Windows? by grahamsaa · 2009-06-04 03:22 · Score: 5, Funny

Why a bank's IT / security team would feel it appropriate to operate ATMs that run Windows is completely beyond me. I mean, if bankers were really that stupid the world economy would probably have crumbled by now. Oh, wait. . .

--
Facts have a liberal bias.
Re:ATM != desktop computer by Anonymous Coward · 2009-06-04 03:23 · Score: 1, Funny

Here in Canada, the only ATMs I've crashed personally were both running linux (either that, or a version of Windows that displays a fake linux boot sequence to save face.)
Free gas courtesy of Mircosoft! by Anonymous Coward · 2009-06-04 03:23 · Score: 5, Funny

Once I found a gas station near my work that the pumps where running a version of Windows back around 1999-2000. If you swiped your card and pulled the nozzle at the same time the little LCD screen showed a BSOD and you got free gas. I fill up there for 1 week until they closed the station and changed the pumps. Never got charged a cent!
1. Re:Free gas courtesy of Mircosoft! by Stoned+Necromancer · 2009-06-04 07:03 · Score: 1, Funny
  
  It's not a theft - it's a feature!
2. Re:Free gas courtesy of Mircosoft! by The+Lord+God · 2009-06-04 10:53 · Score: 2, Funny
  
  Holy shit Jesus reads Slashdot
  Hardly. I just wish I could get him to stop running around in WoW "healing" everybody.
Re:ATM != desktop computer by CopaceticOpus · 2009-06-04 03:45 · Score: 4, Funny

This is a perfect chance to call your bank:
YOU: "I've been reading online about ATMs which are based on Windows XP being attacked by cybercriminals, and I'm worried. Are your ATMs running on Windows?"
THEM: "I'm not sure about the particular technology used in our ATMs, but we've had no security issues thus far."
YOU: "THEN YOU'D BETTER GO CATCH THEM!" Tee hee-hee! (click!) Snicker, snicker, snort, snicker...
The top 10 ways computer security list by lwriemen · 2009-06-04 03:54 · Score: 2, Funny

10. Don't always run as root
9. Don't open attachments from unknown sources
8. Don't run Windows!
7. Don't run Windows!
6. Don't run Windows!
5. Don't run Windows!
4. Don't run Windows!
3. Don't run Windows!
2. Don't run Windows!
1. Don't run Windows!
Re:ATM != desktop computer by Anonymous Coward · 2009-06-04 04:06 · Score: 3, Funny

You have to multitouch move an on-screen representation of your money to the trashcan in order to get the ATM to eject it into your hand.
Re:ATM != desktop computer by TJamieson · 2009-06-04 04:44 · Score: 4, Funny

As if we (end users) actually need any of this annoying shit, just keep your advertisements elsewhere and let me have my damn money in a convenient and secure fashion! Serves 'em right, greedy advertising whores.
THANK YOU! I remember several years ago, I stopped at my local ATM and noticed the screen was now in color. Hey, that's neat, I thought. Since I had just pulled up, it was displaying a picture of the bank. So I began to use the machine - wait, what the hell? The interface is still the exact same monochrome it has been since 1985! Why would they order a color screen? Then, as I completed my transaction and waited for my receipt, the reason came up -- a full-color ad for buying their shitty mortgage services.
Nevermind the fact that a good 30% of the time said ATM was "Temporarily unable to dispense cash" (read: empty).

--
For the last time, PIN Number and ATM Machine are redundancies!
True Story by ohnotherobots · 2009-06-04 04:49 · Score: 2, Funny

A friend of mine had his atm card in a Bank of America machine to withdraw money when the power went out. When it came back on a few seconds later, he was greeted with the Windows XP Embedded splash screen before the atm interface came up. The machine didn't realize it still had his card, so he couldn't get it back. (This is especially funny since he is a MS fanboy.)