Nachi Worm turned Cash Machines into scanning engines
25th November, 2003
The Nachi worm compromised cash machines at two financial institutions last August, according to Diebold, which manufactured the Windows-based automatic teller machines. The event is being called the first confirmed case of malicious code penetrating cash machines, according to Security Focus. The two financial institutions were not identified, and the infected machines were quickly isolated when they began scanning the ATM networks, triggering intrustion detection systems, according to Diebold.
The Nachi worm exploited a RPC DCOM hole, for which Microsoft issued a patch a month prior to the worm's release, which Diebold neglected to install on the infected machines. Last week Diebold announced that it will include Sygate Security Agent software with all its new ATMs and offer to install Sygate agents on its existing Windows-based ATMs.
About 12 percent of ATM systems currently run on Windows-based operating systems, acording to industry analysts, who expect many financial institutions to shift IBM's OS/2 to Windows in the next few years, with some projections suggesting Microsoft's share of the ATM market could reach 65 percent by 2005.
Netcraft can audit banks own web applications for design errors and erroneous functionality.
Posted by Rich Miller in Security
Outages Continue at SCO
15 Dec 2003 Performance, Security
The web site outages continue at SCO, which was unreachable for much of the weekend and is currently experiencing its fourth incident of extended downtime since it came under a distributed denial of service (DDoS) attack last Thursday. A dynamically...View full post
CAIDA: Data Confirms DDoS at SCO
12 Dec 2003 Performance, Security
A data-based analysis of SCO's web site by the Cooperative Association for Internet Data Analysis (CAIDA) has found that this week's outage was related to a distributed denial of service attack (DDoS). Data collected by CAIDA's Network Telescope indicates...View full post
IE Flaw Allows Spoofed URLs
12 Dec 2003 Security
A newly publicized bug in Internet Explorer shows that it is possible to craft html which causes Internet Explorer to display an incorrect URL in its address and status bars, making it easier for Internet fraudsters to trick web users into divulging...View full post