Monday, November 2, 2015

A new serious failure in ATMs brings access to the bank network

The Wincor Nixdorf ATM's have serious security problems, according to a German researcher who casually discovered that, when you withdraw money, the machine showed an important amount of sensible information while it was upgrading the software. We'll discuss it as well as the problem suffered by 2000 Vodafone customers who have seen their accounts committed for using the same password in different sites. We'll also recommend a free tool to fight against ransomware and a delicious documentary about girls making apps. 

The ATMs affected belong to the German bank Sparkasse, which is already patching them up. Benjamin Kunz-Mejri discovered the problem when, withdrawing money from a cash dispenser, it sudennly stopped working and started to upgrade its software. The researcher fiddled around a little bit to discover, amazed, how the terminal was showing all the update process as well as users names, serial numbers, firewall and ATM's configuration, network information, IDs from the devices and even two system passwords. And, to make matters worse, the operating system was the outdated Windows XP.

Stolen and reused data

Dangerous times we're living in. Just ask the 1827 Vodafone UK costumers whose accounts have been committed and later blocked by the company, which denies having suffered a database leak. The assumption is that the thieves used the stolen data from other site to enter the accounts, considering that a lot of people use the same credentials for different services. It's a clear example of the network complexity and its "Butterfly effects". From the Vodafone assaulted accounts they stole phone numbers, bank codes and the last 4 digits from the account. With this and some phishing, thieves can go on with the harvest.    

Against ransomware

And if we closed last week talking about ransomware, today we continue with this neverending topic: Kaspersky presents a free tool, called "Ransomware Decryptor", which can be used by people affected by Coinvault and Bitcryptor ransomware, to decode the files this virus have ciphered. It couldn't be easier: you only have to download the tool and execute it in the infected computer. By the way, today the CCN-CERT presents an exhaustive report about ransomware. People interested can download it n the CCN-CERT website or also in the link we offer in our Twitter account.

Girls making apps

We finish with something not related with our specific area, the IT security, but that we loved: a documentary about CodeGirl, a contest which has involved 5.000 young women from 60 different countries. The challenge was creating a mobile app from scratch, which could solve an specific problem of the girls community. The result is frankly delicious.

And here ends our daily summary.


Post a Comment