IOActive security researcher Josep Rodriquez has warned that the NFC readers used in many modern ATMs and point-of-sale systems are leaving them vulnerable to attacks,
Wired reports. The flaws make them vulnerable to a range of problems, including being crashed by a nearby NFC device, locked down as part of a ransomware attack, or even hacked to extract certain credit card data.
Rodriquez even warns that the vulnerabilities could be used as part of a so-called “jackpotting” attack to trick a machine into spitting out cash. However, such an attack is only possible when paired with exploits of additional bugs, and
Wired says it was not able to view a video of such an attack because of IOActive’s confidentiality agreement with the affected ATM vendor.
/cdn.vox-cdn.com/uploads/chorus_asset/file/8792127/acastro_170629_1777_0008.jpg)
www.theverge.com
