The code for the software uses undocumented features to create a virtual ‘skimmer’ which is capable of recording card details and personal identification numbers without the user’s knowledge, which suggests that the creator had access to the source code for the ATM. While this doesn’t directly point to an inside job, the possibility certainly can’t be ruled out.
Sophos believes that the code was intended to be pre-installed by an insider at the factory…
ITWire explains: “It appears to be an inside job, as it uses undocumented functions of the ATM software and appears to use the printer. This suggests the people behind the malware have access to the Diebold software”.
“Undocumented functions” just like those found on Diebold voting machines, naturally. And “access to the Diebold software” such as that gained by either a company insider, or someone who happened to find the source-code for Diebold’s voting machine software just left by the company, available for download by anyone, on an unprotected Internet site…
A follow-up from SC Magazine offers more details and Diebold has confirmed — in a letter [PDF] issued along with a security update sent to “Dear Valued Customer” — that a “physical break-in…affected a number of Diebold automated teller machines (ATMs) in Russia”. Those machines were their “Windows®-based ATMs”. Not unlike their “Windows-based” voting machines.
In the letter, Diebold also writes, presumably with a straight face [emphasis added]: “This latest offense against Diebold ATMs is another example of the growing level of sophistication and aggression involving ATM-related crime. Security is one of Diebold’s absolute priorities and our engineers are working constantly to address emerging ATM security threats.”
Seriously, can’t somebody finally put this horrible company out of America’s (and the world’s) misery?!
Recently related:
- Diebold Admits Audit Logs in ALL Versions of Their Software Fail to Record Ballot Deletions
- E-VOTE BOMBSHELL: Diebold Tabulator Drops Votes, Allows Undetectable Audit Log Deletion
Not as recently, but still related:
- DIEBOLD VOTING MACHINE KEY COPIED FROM PHOTO AT COMPANY’S OWN ONLINE STORE!
- HACKED: VIRUS IMPLANTED, SPREAD ON DIEBOLD TOUCH-SCREEN VOTING MACHINE!
That’s not all, of course. We got a million of ’em. But we’ll spare you for now. “Security is one of Diebold’s absolute priorities.” Indeed.
(Hat-tip “TH”)
From (& To) Russia, With Love
If you ask security experts why more cyber criminals aren’t brought to justice, the answer you will probably hear is that U.S. authorities simply aren’t getting the cooperation they need from law enforcement officials in Russia and other Eastern European nations, where some of the world’s most active cyber criminal gangs are thought to operate with impunity.
I’m not trying to take the heat off of Diebold belive me. I’m only wondering if their incompetence is magnified by a trend in Russia?
And while you’re at it, somebody, how about the company that makes the crummy operating system Diebold’s crummy software runs on?
If diebold really wanted to they could go to an operating system that isn’t effected by viruses like mac os or perhaps linux. Why would they use shitty windows. I use windows personally and can see it is merely a monopoly with half assed programmers releasing only alittle at a time so people can upgrade every couple years and keep microsoft in business. I can see linux eventually taking over since it’s open source and not greed orientated like the federal reserve.
Georg D –
Of course, I’m the last person you’ll see defending the reprehensible Diebold for anything. Or even Microsoft, for that matter. But the fact is, if you click through the various source articles, the bad guys were able to take advantages of “undocumented features” in the source code, suggesting insider access and/or knowledge of that code.
To that extent, had linux, or even a self-created OS been used for these systems, they could have been vulnerable to a similar attack.
Same is true, by the way, for open source voting systems, despite those who argue for them, as if they would be some sort of panacea for our country’s foolish misadventure into e-voting.
Diebold ? why are these fraudsters still in business.
They have fixed elections
and for that they are rewarded by their masters with an ATM contract?
something is wrong in America justice is gone
fraudulent bankers get away with the biggest heist in America history
and no one goes to jail !
Meanwhile the American tax paying Sucker is buried with 1.8 quadrillion in the fraudulent
banking debts.
America is over now the barbarians argue over the last few scraps of wealth left in America.
Soon they will come for your assets but first your
guns will be taken.
During the past eight years of Diebold elected (by fraud) government our nation has gone down the crapper. Now, those same types are trying to keep our new president from trying to clean up the mess. It is time for the american people to forget the politically correct bullshit and stomp these bastards out or we are finished as a viable country to raise our children.
…Jim Edinger said…
Actually… if Obama is still so unconnected to reality as to keep pretending that the financial behemoths such as AIG aren’t completely insolvent… then I don’t think it’s a matter of him being “kept” from cleaning up the mess.
Just wait until we find out that the public can’t audit the books on the assets we’re
paying trillions forinflating the economy by trillions for because it’s a matter of… “national security.”Oh that’s just great!
Sheesh!