ATM Crisis? 95% Still Run XP

Discussion in 'The Lounge' started by gman863, Mar 19, 2014.

  1. gman863

    gman863 MajorGeek

    This may make you think twice about using your ATM card after April 8th:

    http://www.bankrate.com/financing/b...-on-windows-xp/comment-page-2/#comment-586739

    The key points in the story include:

    • An estimated 95% of ATMs in the United States still use Windows XP.
    • Chase Bank is paying Microsoft for a customized extention of XP support for one additional year.
    • Even if every bank/ATM currently using XP was upgraded to Windows 7 or 8, it's doubtful ATM manufacturers like NCR could complete the process in one year.

    Yes, I know banks give zero fraud liability protection in the US. It's just unnerving thinking about all the hackers in third world countries who are salivating over this and the time it would take cleaning up an identity theft issue.
     
  2. Fred_G

    Fred_G Heat packin' geek

    You would think they would have thought about this a couple of years ago, you know, when MS announced they were not going to keep XP forever... Maybe time to upgrade was 9 months ago, so they would have some time to test things.

    I know I am going to go to the ATM and try to deposit a Win 95 CD, see if I can get some of Bill Gates $! ;):-D
     
  3. Adrynalyne

    Adrynalyne Guest

    They are probably on a closed network too.
     
  4. Fred_G

    Fred_G Heat packin' geek

    What do you mean by 'closed network'? If you have ATM's on XP, and you can access your account at home on the interwebs, how is that closed, or am I misunderstanding your terminology. (most likely the later.)
     
  5. Adrynalyne

    Adrynalyne Guest

    You may access the bank online, but you aren't accessing an ATM.
     
  6. blatherbeard

    blatherbeard Specialist

    Most ATM's still use Dial up(at least the small ones in grocery stores and the like do) from what ive seen. Id have thought they'd connect to the web, but ive installed phone lines for the sole purpose of an ATM, where the POS machines are using the internet.
     
  7. Adrynalyne

    Adrynalyne Guest

    Like the Post Office that has its own connection.
     
  8. Sgt. Tibbs

    Sgt. Tibbs Ultra Geek

    I realize this is anecdotal, but I have used exactly one ATM in the last ten years that was on dialup. It was one of those that are affiliated with no particular bank in a gas station convenience store. Any ATM I've used that is actually branded from a bank or credit union hasn't been, regardless of where I am in the country or what bank/credit union it is.
     
  9. Adrynalyne

    Adrynalyne Guest

    Either way, they aren't on a public network at all. So chances are there are several layers of security that have to be peeled away before a 0-day can even get to the OS. So you would have to get though other networks and computers before getting to the ATM. I'd be more worried about the other machines running XP (and they probably are).
     
  10. hitest

    hitest Staff Sergeant

    The only thing I worry about is a criminal installing a card reader on my ATM. Thankfully that is mostly prevented because I think my ATM has a closed circuit TV camera watching it. The bad guys are inventive. I don't do a lot of on-line banking.
     
  11. Sgt. Tibbs

    Sgt. Tibbs Ultra Geek

    Oh, absolutely! It never occurred to me that they might be on a public network. Someone is far more likely to be able to hack into my account from my machine than they are the ATM, regardless of its OS.
     
  12. Adrynalyne

    Adrynalyne Guest

    Just doing some light browsing, it looks like a lot of the ATM hackers out there rely on social engineering and cameras to record your pin, or card readers they replaced in the machine.

    None seem to be a real software weakness. Which is good :)
     
  13. blatherbeard

    blatherbeard Specialist

    Yeah i guess mines pretty anecdotal as well ;)

    but then again maybe they shut off the speaker so you dont hear the toneS lol

    :cool
     
  14. Fred_G

    Fred_G Heat packin' geek

    Interesting, did not know they had dedicated lines. Makes sense.
     
  15. Sgt. Tibbs

    Sgt. Tibbs Ultra Geek

    Could be, but judging by the speed of connection I'm going to go with "no". ;)
     
  16. DavidGP

    DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

    I can imagine that banks ATMs are on a network like my work one and as you state a "closed" one as we have a closed network for patient data, gaining access is like asking for the holy grail!

    The Windows version used is likely the embedded one and not really the same as consumer.

    I'm more worried about our news agencies as the weirdass stories they are stating gloom and doom for us all.
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds