Trust No One. ATMs and their dirty little secrets. Olga Kochetova & Alexey Osipov
In this paper we will concentrate on different aspects of network and internal security problems of ATMs. We will cover some basic controls that are already there and why they are important, as well as we will provide some advices to be implemented.
We will dig into technical details of attacks on ATMs produced by more wide spread vendors. There are concentration on two aspects: network communications of ATMs with processing centers and communication of host with it's peripherals. We will describe how attackers transform ATM into skimming device without any physical access to it or steal all money without any forensic evidence in ATM logs.