The presentation discusses the vulnerabilities of ATM machines and the different types of physical and logical attacks that can be used to exploit them. It also explores the different interfaces used to connect dispensers to PCs and the potential security risks associated with them.
- ATM machines are vulnerable to physical and logical attacks
- Physical attacks include brute force attacks and resonant attacks
- Logical attacks include malware attacks and black box attacks
- Different interfaces are used to connect dispensers to PCs, including RS-232, SDC bus, and USB
- USB is the most common and complex interface, with a lot of abstractions and the need for a hardware sniffer to see data at a low level
The presentation mentions a specific example of a black box attack, which involves using extra hardware devices connected to the hardware bus. The device is called a black box and can be used to withdraw cash from the ATM. This type of attack requires low-level protocols and knowledge of the ATM's power, and does not depend on processing center operation systems or other software.