Sister CISA CISSP:

Automatic Theft Machines


September 16, 2010  7:45 PM

A Picture Can be Worth a Thousand Words



Posted by: Arian Eigen Heald
Adventures in Auditing, ATM Security, Automatic Theft Machines, Start Laughing Now

At a hotel in Orlando, I came across this ATM just as the repairman was walking away. Next to the restrooms and telephones, a free ATM!

Bookmark and Share     0 Comments     RSS Feed     Email a friend

December 29, 2009  7:58 PM

Just in Time for the Holidays…..



Posted by: Arian Eigen Heald
Automatic Theft Machines, cloud computing, Cloud Security, information security, SQL Injection, Start Laughing Now, TCM (Truly Clueless Management)

There are a bunch of year end studies coming out, predicting various sorts of rises and decreases in criminal activity on the Internet. ("cybercriminal" sounds way too glamorous for me.) So I thought I'd offer up, in the spirit of the season, my two cents: Under the Category of Bad...


November 23, 2009  5:39 PM

Buy Your OWN Automatic Theft Machine



Posted by: Arian Eigen Heald
Automatic Theft Machines, Data Breaches, Eigen's Rules of Thumb, Hardware & InfoSec, Identity theft, Stupid Technology

Is it really a surprise that ATMs can be bought on eBay or Craigslist? Given the amount of...


September 22, 2009  4:33 PM

Next Generation ATM Skimmers



Posted by: Arian Eigen Heald
ATM Security, Automatic Theft Machines, Data Breaches, Hardware & InfoSec, information security

I was over on identitytheft.info watching some video feeds when I came across this one. It's worth taking a look at not because the technique for attaching Bad Things is all that different, but...


September 17, 2009  9:07 PM

Pumping Gas and Losing Your Shirt



Posted by: Arian Eigen Heald
ATM Security, Automatic Theft Machines, Hardware & InfoSec, information security

I hadn't really thought about it, but it made perfect sense the first time I read about it: thieves are capturing credit card and debit card data at the gas pump. Given that the pump is acting as a big cash register, it makes perfect sense that skimmers could be attached the...


June 19, 2009  2:05 PM

ATMs that just spit out money – Nice!



Posted by: Arian Eigen Heald
ATM Security, Automatic Theft Machines, Data Breaches

As you may know, one of my favorite posting topics has to do with ATMs. I call them Automatic Theft Machines because there are way too many stories of equipment being hacked, and/or swiping hardware being installed, or people just driving away with them. Well, along comes


April 15, 2009  7:01 PM

The Beginning of the End for PIN Codes



Posted by: Arian Eigen Heald
Automatic Theft Machines, Data Breaches, PCI DSS, Security Devices

Yesterday Wired released a story that reveals a startling detail about the TJMaxx data breach: hackers were able to cash in on stolen debit cards because they had a way to crack PINS. This "minor detail" was buried in an affadavit...


March 9, 2009  11:59 PM

ATM Heists Grow in 2007 and 2008



Posted by: Arian Eigen Heald
Automatic Theft Machines, Data Breaches, PCI DSS

A story on Wired came out recently about a $9 million ripoff of RBS WorldPay. Further reading on Wired led me to articles about, variously, a cracking of an ATM network in 7-Eleven stores that linked to


February 20, 2009  3:06 PM

Must READ: A Great Article on ATM Card Skimming



Posted by: Arian Eigen Heald
Automatic Theft Machines, credit card crime, Data Breaches

If you want to know what to look for in the growing cybercrime market of ATM card skimming, read the article and check out the pictures. Knowing what to look for is half the battle. And kudos to the author,


December 11, 2008  5:27 PM

More on ATMs – The Daily Store Owner Log



Posted by: Arian Eigen Heald
Automatic Theft Machines, DataManagement, Hardware & InfoSec, Identity theft, Security Devices, Stupid Technology

Did you know that a store that puts in an ATM for customer use also provides a daily log of transactions to the owner? The log includes the Bank name, last four numbers of the account, the customer name, and the transaction. So if I do an account balance request, that comes up in the log. ...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: