Bank Employee Plants Malware on ATMs
Wired's Threat Level has a piece on a Bank of America employee, Rodney Reed Caverly, who has been charged with installing malware on ATMs in North Carolina. Caverly, who worked on the bank's IT staff, allegedly withdrew cash untraceably from the ATMs over a period of 7 months last year. "The charges were filed the same day that credit card company Visa warned the banking industry that Eastern European ATM malware recently showed up in America for the first time. That code, initially spotted last year on some 20 ATMs in Russia and Ukraine, was designed primarily to capture PINs and bank card magstripe data, but also allowed thieves to instruct the machine to eject whatever cash was still in it... At least 16 versions of the East European malware have been found so far and were designed to attack ATMs made by Diebold and NCR, according to the April 1 Visa alert. There is no information tying the malware found in Russia with the malware allegedly used by Caverly."
I once deposited cash at a Diebold BofA ATM that didn't use envelopes. The little door around the cash-taker closed on the bills and stuck there, so I had to slide/pull them back out. It couldn't read the amount I'd put it (since it ended up being $0) so it made me enter it on the keypad. It wouldn't accept that I'd deposited $0, so eventually I told it I'd deposited $1 so it would give the card back.
To put a long story short, those things are not well-programmed.
who has been charged with installing malware on ATMs in North Carolina. Caverly, who worked on the bank's IT staff, allegedly withdrew cash untraceably from the ATMs over a period of 7 months last year.
Wait - so if they caught the guy, how the hell is that untraceable?
Just because you don't follow the money doesn't mean you aren't tracing.
Although I hear diebold does better with ATM's, I can't help but wonder how much effort they put into ATM security versus the voting machine fiasco.
Meanwhile, ATM's have always been pretty shoddy on security. It's a given. People essentially have physical access to the device.
I wonder if it would be better to have ATM's running a virtual or other remote hosted ATM client so that nothing is hosted on the ATM directly? Or is this already being done in some places?
... what do you do if you get counterfeit bills from an ATM?
File under 'M' for 'Manic ranting'
And I suggest you do not use them either. They just operate and behave wrongly, even when they don't have malware installed.
They're slow. -- ATM's in the 80's were faster.
They're obviously running window XP. -- The standard windows sounds are used.
Well.. maybe. Or Maybe not. But Definitely not sort of.
NO AC, it is not special, it is the regular plan vanilla. It is stock XP with branding done on it with the Diebold name (just like DELL and all the others do to their XP to make them look special)...and yea its installed with a script that leaves out some windows stuff that you don't need...but again this is not special either. I can't say how I know, but trust me I know.