Insider Threat – your ATM may now be hacked from the inside. According to Wired’s Threat Level Blog…
According to the paperwork filed by the US Attorney, the ATM would dispense cash without any record of transaction (see image below) and speculation prompted by Bank of America’s statement is that it was engineered to target the ATM and not the account holders using the ATM.
VISA recently warned of keylogger malware which would also take screenshots. This PDF released by VISA also has hash values of the malware as of March 17th 2010. Of course since variants will change the hash, it’s in a business’ best interest to keep their AV up to date and use the best protection.
If you’re a merchant having issues, the VISA site mentioned in the PDF is found here. The penalty of becoming compromised by malware if merchants are not compliant with PCI DSS is pretty grim:
Clearly, it’s incentivizing merchants to keep their AV protection up to date and use the best zero-day protection. I’ve heard speculation that VISA as an industry may be counting on their bottom line revenue increasing due to such penalties. I’ll be following up on that speculation in a later article.
Securing Our eCity Contributing Writer
Author ESET Research, We Live Security