It seems like ATM hacking is still the way to go for those into a bit of hardware hacking. One of the most notorious and well known ATM hackers was recently arrest in Turkey and a list of his tips discovered online where he also sold the ATM skimming equipment.
Well his tips can’t be THAT good if he got caught can they?
A bank-machine hacker who reportedly was arrested earlier this month in Turkey gave would-be fraudsters tips on how to install rogue card-reading devices, including advising them to target drive-through ATMs (automated teller machines) and avoid towns with fewer than 15,000 residents.
The hacker, who went by the handle “Chao,” reportedly was arrested earlier this month in Turkey. He was one of the most well-known ATM hackers in the world, according to Uri Rivner, head of new technologies for RSA Consumer Solutions.
Chao sold fake faceplates that fraudsters could attach to the card slots in ATMs. These “skimmer” devices can read the magnetic stripe of every customer’s ATM or credit card, and are often used in conjunction with a hidden camera that watches people enter their PINs (personal identification numbers), Rivner said. Alternatively, criminals can attach an extra keypad on top of the one in the machine and capture the PIN that way, he added.
It seems like the old methods are still prevailing but the kit used is probably lot smaller, neater and unobtrusive. They skim your card, record your pin on the number pad with a micro dot camera and usually beam it all to a wifi PC nearby which will pipe it back to the owner over the net with a 3G phone or similar.
Just be careful where you use the ATM machine and cover the numberpad with your other hand when you are typing to the PIN to be extra vigilant.
- don’t install a skimmer in the morning, because people are more vigilant then;
- determine where a person would have to stand to keep an eye on everything happening on that block;
- avoid blocks where more than 250 people per day walk through, because of the danger of detection;
- don’t install skimmers in towns with fewer than 15,000 people, because people in those towns know what their ATMs look like;
- avoid areas with small shops open 24 hours a day, because there may be surveillance cameras and vigilant shopkeepers;
- don’t set up in areas where a lot of illegal immigrants live;
- places with a lot of tourist traffic are good;
- look for affluent neighborhoods and drive-through ATMs;
- ATMs near cash-only bars are a good bet for lots of customer activity.
The tips are really nothing ground-breaking, but interesting to read nevertheless. Most of them could be considered common sense, but some like not targeting really small towns are quite interesting.
I would have thought busy times would have been the best time to go in as long as there is no-one else queuing at the ATM machine.
Source: NetworkWorld
