Alert icon
We're changing our privacy policy. This stuff matters.  Learn more  Dismiss

DEFCON 18: Jackpotting Automated Teller Machines Redux 2/3

Sign in or sign up now!
Alert icon
Upgrade to the latest Flash Player for improved playback performance. Upgrade now or more info.
40,563
Loading...
Alert icon
Sign in or sign up now!
Alert icon

Uploaded by on Oct 6, 2010

Speaker: Barnaby Jack


The presentation "Jackpotting Automated Teller Machines" was originally on the schedule at Black Hat USA 2009. Due to circumstances beyond my control, the talk was pulled at the last minute. The upside to this is that there has been an additional year to research ATM attacks, and I'm armed with a whole new bag of tricks.

I've always liked the scene in Terminator 2 where John Connor walks up to an ATM, interfaces his Atari to the card reader and retrieves cash from the machine. I think I've got that kid beat.

The most prevalent attacks on Automated Teller Machines typically involve the use of card skimmers, or the physical theft of the machines themselves. Rarely do we see any targeted attacks on the underlying software.

Last year, there was one ATM; this year, I'm doubling down and bringing two new model ATMs from two major vendors. I will demonstrate both local and remote attacks, and I will reveal a multi-platform ATM rootkit. Finally, I will discuss protection mechanisms that ATM manufacturers can implement to safeguard against these attacks.

For presentations, whitepapers or audio version of the Defcon 18 presentations visit: http://defcon.org/html/links/dc-archives/dc-18-archive.html

Category:

Science & Technology

Tags:

License:

Standard YouTube License

  • likes, 1 dislikes

Link to this comment:

Share to:

Top Comments

  • The fuck was the cameraman up to?

    win1337 1 year ago 75

  • great camera work durr

    WrittenByMyDog 1 year ago 73

see all

All Comments (21)

Sign In or Sign Up now to post a comment!

  • hurrr nice camera work /sarcasm

    xXx1a00a1xXx 1 year ago

  • I isn't the cameraman's fault. At defcon the camera was on a stage thing in the middle of the room and people sitting behind it would put their feet on it and kick it and things like that.

    GigsVT 1 year ago

  • U god

    playerjosh146play8 1 year ago

  • any one who wonders why the diebold keys are unavailable was a scandal due to diebold made the USA voting machines with once again the one key fits all and these tamper proof machines thus became, vulnerable.

    so it was covered up and taken off line.

    kaziyakun 1 year ago

  • Awsome camera... ASS =\

    illtrykill 1 year ago

  • good cameraman... good

    Lrrrrrrrr 1 year ago

  • Does anyone know where to get Dillinger and Scrooge? I've been googling for a while now.

    lordofsraam 1 year ago

  • check out the blackhat presentation also on youtube - more professional talk with much better cameramen

    dspyrit1 1 year ago

  • For those of you freaking out about "OMG, how can he teach people how to do this??"

    This guy is actually helping. Maybe not the ATM companies themselves (who are likely already aware of such *potential* vulnerabilities) but definitely the customers who buy these ATMs and are made to believe that threats like this don't exist.

    Tutorials like this force companies to invest into security rather than relying on only unknown amounts of criminals knowing.

    ssanders6 1 year ago 5

  • What's with the 5k whistle in the sound system?

    Joeey 1 year ago

Loading...

Alert icon
0 / 00Unsaved Playlist Return to active list
    1. Your queue is empty. Add videos to your queue using this button:
      or sign in to load a different list.
    Loading...Loading...Saving...
    • Clear all videos from this list
    • Learn more