News

This article was published more than 3 years ago and the content may be outdated.

FREE ATMIA Webinar: Rogue Device Attacks

Thursday, May 14, 2020

View Showroom

Company: ATM Industry Association

Live Webinar

ATMIA Webinar:

Rogue Devices attacks on ATM through internal abusers and supply chain

xxxxxxxx

When an attacker evaluates his next target, he would usually conduct a reconnaissance phase (assuming it’s not just a high-volume attack campaign). Once completed, the attacker will have a full “inventory list” of the security measures taken – vendors, versions etc., he can then decide to go “head-to-head” with those security products or follow Sun Tzu’s advice, realizing that Cyber security products are getting better (and stronger) in the protection they offer.

Following Sun Tzu’s guidelines pushes the attacker to find alternative options – and HW/FW vulnerabilities seems to be the weakest link. As shown on multiple cases, exploiting HID device vulnerabilities can bypass multiple security measures, and impersonate as a legitimate device, without having to confront all those security measures. Having difficulties accessing the internals of the ATM – why not go for the network interface, usually external, and less protected. Another option is to use supply chain, by infecting equipment, that is later introduced as spare parts that find their way into your infrastructure. The fight is unfair, but there is still a lot that we can do.

Presenters:

Bentsi Benatar, CMO and Co-Founder, Sepio Systems

When:
Wednesday, May 27th, 2020

2:00 PM GMT / 3:00 PM BST / 9:00 AM CST

Cost:
Free

Questions?
Email Erika Navarrete

*ATMIA members have access to ATM focused webinars, best practices, industry reports and more. To learn more about the benefits we offer, visit our website or email Erika Navarrete, Amber Howell or Claire Feterl.