[ISN] Hacker develops multi-platform rootkit for ATMs

From: InfoSec News <alerts_at_private>
Date: Thu, 6 May 2010 00:44:17 -0500 (CDT)

By Robert McMillan
IDG News Service
May 5, 2010

One year after his Black Hat talk on Automated Teller Machine security 
vulnerabilities was yanked by his employer, security researcher Barnaby 
Jack plans to deliver the talk and disclose a new ATM rootkit at the 
computer security conference.

He plans to give the talk, entitled "Jackpotting Automated Teller 
Machines," at the Black Hat Las Vegas conference, held July 28 and 29.

Jack will demonstrate several ways of attacking ATM machines, including 
remote, network-based attacks. He will also reveal a "multi-platform ATM 
rootkit," and will discuss things that the ATM industry can do to 
protect itself from such attacks, he writes in his description of the 
talk, posted this week to the Black Hat Web site.

Jack was set to discuss ATM security problems at last year's conference, 
but his employer, Juniper Networks, made him pull the presentation after 
getting complaints from an ATM maker that was worried that the 
information he had discovered could be misused.

The security researcher found a straightforward way of getting around 
Juniper's objections, however. Last month, he took a new job as director 
of security research with IOActive.


Best Selling Security Books and More!
Shop InfoSec News
Received on Wed May 05 2010 - 22:44:17 PDT

This archive was generated by hypermail 2.2.0 : Wed May 05 2010 - 22:52:14 PDT