Black Hat Security Conference Reveals ATM Hack, Money At Risk

ATM-Machine

During the Black Hat Security Confenence, Barnaby Jack of IOActive stated that, “I found specific vulnerabilities in the ATM machines. But the attack surface is across the ATM industry as a whole.” The results were shocking, as he further stated that, “In every ATM system I’ve looked at, I’ve been able to find flaws.”

The words were even more deeply ingrained by his personal demonstration of hacking two different ATM machines during the conference and summoning cash on demand. The ATM machines were of the generic type generally found in convenience stores. However, it was further stated that patches had already been developed by the systems.

After experimentation with his own machines, it was revealed that Jack could easily bypass the machine’s security system and find vulnerabilities. The tools developed for the demonstration were just meant to show the vulnerabilities of the machines and to highlight ways to overcome the problems.

Highlights of the conference session showed Jack connecting to one of the ATM machines, and running a program that did the most amazing thing to the unbelief of the audience. The program was called Jackpot, and it caused cash to be spewed out from the helpless ATMs, all the while displaying the word ‘Jackpot’ on the screen in time to a tune.

Further highlights of the conference revealed the insecurities of free iPhone and Android apps which could easily steal the user’s contact data.