Well that was way too fast…

Dave G. | September 20th, 2006 | Filed Under: Uncategorized

I am holding in my hands a legitimately obtained copy of the manual. There are a lot of security sensitive things inside of this manual. As promised, I am not going to reveal them, but there are:

  • Instructions on how to enter the diagnostic mode
  • Default passwords
  • Default Combinations For the Safe

Do not ask me for them. If you maintain one of these devices, make sure that you are not using the default password. If you are, change it immediately.

4 Comments so far

  • Adam

    September 20th, 2006 7:36 pm

    I’m curious…does the manual explain how to execute the attack described? That is, from the console, reprogram the ATM to know what sort of bills are in each feed?

  • Alan

    September 21st, 2006 8:47 am

    See the Wired story:

    http://blog.wired.com/27BStroke6/#1560245

  • Chris

    September 21st, 2006 9:48 am

    I know of at least one other ATM model whose management interface can be accessed via the keypad w/out an intervening powercycle.

    This model allows the denomination to be changed using the management interface, with procedures described in the manual.

  • scalefree

    September 22nd, 2006 11:16 am

    And it also includes the 3 default passwords, a section on setting the 3DES keys, all sorts of fun stuff. What I’m wondering about is why the guy didn’t set the $20 tray to $1 instead of $5, since it’s a valid option. You’d get way more money that way.

    • Leave a reply