Re: [News] [Rival] Another Reason Never to Use Windows on an ATM

Home	Messages Index

[Date Prev]	[Date Next]	[Thread Prev]	[Thread Next]

Author Index	Date Index	Thread Index

Re: [News] [Rival] Another Reason Never to Use Windows on an ATM

Subject: Re: [News] [Rival] Another Reason Never to Use Windows on an ATM
From: Roy Schestowitz <newsgroups@xxxxxxxxxxxxxxx>
Date: Mon, 01 Oct 2007 13:19:02 +0100
Newsgroups: comp.os.linux.advocacy
Organization: Netscape / schestowitz.com
References: <1274671.jSe4ZmcrXr@xxxxxxxxxxxxxxx> <aeh5t4-tpo.ln1@xxxxxxxxxx> <7ru6t4-dhb.ln1@xxxxxxxxxxxxxxxxxxxxxx>
User-agent: KNode/0.10.4

____/ Mark Kent on Monday 01 October 2007 11:30 : \____

> [H]omer <spam@xxxxxxx> espoused:
>> Verily I say unto thee, that Roy Schestowitz spake thusly:
>> 
>>> Pictures of ATM Machine Running Windows XP Crashing
>> 
>> Maybe the last punter requested 100 quid, but Windows rounded it up to
>> 100,000 using Excel, and caused the machine to go bananas.
>> 
> 
> Does anyone know which banks in the UK use Windows at any point in
> handling money?  It would be very useful to know where the risks are to
> my cash.

Look no futher than about a month ago:

Indian Bank Restores Site After Malware Attack

,----[ Quote ]
| The bank has closed the site on Friday after it found that the site had been 
| hacked, 
`----

http://news.yahoo.com/s/pcworld/20070904/tc_pcworld/136716

http://toolbar.netcraft.com/site_report?url=http://www.bankofindia.com

67.15.253.6     Windows Server 2003     Microsoft-IIS/6.0       21-May-2007
64.39.18.73     Windows 2000            Microsoft-IIS/5.0       22-Jan-2005
204.176.140.102 Linux   Apache/1.3.27 Unix Red-Hat/Linux PHP/4.1.2
mod_perl/1.24
14-Jan-2003
204.176.140.102 Linux   Apache/1.3.22 Unix Red-Hat/Linux PHP/4.0.6
mod_perl/1.24
12-Sep-2002
204.176.140.102 Linux   Apache/1.3.22 Unix Red-Hat/Linux PHP/4.0.1pl2
mod_perl/1.24   27-Jun-2002
204.176.140.102 Linux   Apache/1.3.12 Unix Red Hat/Linux mod_ssl/2.6.6
OpenSSL/0.9.5a PHP/4.0.1pl2 mod_perl/1.24       28-Jun-2001
204.176.140.102 unknown Apache/1.3.12 Unix Red Hat/Linux mod_ssl/2.6.6
OpenSSL/0.9.5a PHP/4.0.1pl2 mod_perl/1.24       27-Jun-2001
204.176.140.102 Linux   Apache/1.3.12 Unix Red Hat/Linux mod_ssl/2.6.6
OpenSSL/0.9.5a PHP/4.0.1pl2 mod_perl/1.24       22-Jan-2001
204.176.140.102 Linux   Apache/1.3.6 Unix PHP/3.0.7     17-Nov-2000

Here is what happened:

Breaking: Bank of India seriously compromised

http://sunbeltblog.blogspot.com/2007/08/breaking-bank-of-india-seriously.html

How the Online Trust Model is Broken - The Bank of India.com attack

,----[ Quote ]
| Manually entering the addresses into a browser will load some of them, 
| suggesting that those upstream malware sources are active (others have 
| already been shut down).  
`----

http://www.beskerming.com/commentary/2007/08/31/265/How_the_Online_Trust_Model_is_Broken_-_The_Bank_of_India.com_attack

Many banks in the UK are on the same boat (mine included). It's a timebomb
waiting to explode.

-- 
                ~~ Best of wishes

Roy S. Schestowitz      |    "Pentiums melt in your PC, not in your hand"
http://Schestowitz.com  | Free as in Free Beer |  PGP-Key: 0x74572E8E
Cpu(s): 27.3%us,  4.9%sy,  1.0%ni, 61.5%id,  4.9%wa,  0.3%hi,  0.2%si,  0.0%st
      http://iuron.com - semantic engine to gather information

[Date Prev]	[Date Next]	[Thread Prev]	[Thread Next]

Author Index	Date Index	Thread Index