linux-nerds.org

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Cybercrooks use Raspberry Pi to steal ATM cash

Technology

20 Beiträge 18 Kommentatoren 0 Aufrufe

F fne8w2ah@lemmy.world

This post did not contain any content.

Cybercrooks use Raspberry Pi to steal ATM cash

: Criminals used undocumented techniques and well-placed insiders to remotely withdraw money

(www.theregister.com)
H This user is from outside of this forum
H This user is from outside of this forum
homesweethomemrl@lemmy.world

schrieb zuletzt editiert von

#11

The backdoor, for example, appeared to be the LightDM display manager often used by Linux systems, demonstrating the group's skillset, which the researchers said spanned Linux, Unix, and Oracle Solaris environments.

The backdoor was the display manager. Well goddamn.
1 Antwort Letzte Antwort

23
F fne8w2ah@lemmy.world

This post did not contain any content.

Cybercrooks use Raspberry Pi to steal ATM cash

: Criminals used undocumented techniques and well-placed insiders to remotely withdraw money

(www.theregister.com)
T This user is from outside of this forum
T This user is from outside of this forum
the_doktor@lemmy.zip

schrieb zuletzt editiert von

#12

Were they going to the Galleria to play Missile Command?

"Easy money..."
1 Antwort Letzte Antwort

3
T theoriginalthon@lemmy.world

They hooked a raspberry pi up to the network switch. At this point i think they fucked up security pretty bad
F This user is from outside of this forum
F This user is from outside of this forum
fauxliving@lemmy.world

schrieb zuletzt editiert von

#13

The criminals, or the people they paid to carry out the physical attack, connected a Raspberry Pi to a bank's network switch, the same one hooked up to the ATM that was subsequently raided.

They're kind of skipping over an important detail here.

Sure the technical details are interesting, but it's a bit like discussing the alloys of the tumblers of the safe deposit box after the team has unexplainably bypassed the main safe door...
S 1 Antwort Letzte Antwort

14
F fauxliving@lemmy.world

The criminals, or the people they paid to carry out the physical attack, connected a Raspberry Pi to a bank's network switch, the same one hooked up to the ATM that was subsequently raided.

They're kind of skipping over an important detail here.

Sure the technical details are interesting, but it's a bit like discussing the alloys of the tumblers of the safe deposit box after the team has unexplainably bypassed the main safe door...
S This user is from outside of this forum
S This user is from outside of this forum
softestsapphic@lemmy.world

schrieb zuletzt editiert von softestsapphic@lemmy.world

#14

Yeah that implies physical access.

Like it takes a ceritain security level to even get into rooms that have those switches.

It was probably some IT worker.

Hope they never get caught lol
B 1 Antwort Letzte Antwort

6
P pika@sh.itjust.works

honestly, pretty poor security here. I can't say much cause I don't have inter-device restrictions either... but I'm also not a bank that handles money.

There's no reason a random device should have been able to interface with any of the other devices tbh, I'm guessing the switch wasn't smart so didn't support Mac filtering or port disabling cause that should have not been a valid attack vector.
E This user is from outside of this forum
E This user is from outside of this forum
excessshiv@lemmy.dbzer0.com

schrieb zuletzt editiert von

#15

I just work a pretty standard engineering job at a large company (basically regular office work, not a critical industry like power or pharma), and any MAC that isn't approved by IT is simply not a allowed to interface with anything whatsoever. It's insane that a bank has this loose IT security.
P 1 Antwort Letzte Antwort

2
F fne8w2ah@lemmy.world

This post did not contain any content.

Cybercrooks use Raspberry Pi to steal ATM cash

: Criminals used undocumented techniques and well-placed insiders to remotely withdraw money

(www.theregister.com)
0 This user is from outside of this forum
0 This user is from outside of this forum
01189998819991197253@infosec.pub

schrieb zuletzt editiert von

#16

UNC2891 also used Linux bind mounts to hide its backdoor processes, which, at the time, had not been documented in public threat reports, Group-IB said.

The technique is now recognized by MITRE's ATT&CK framework as T1564.013.

Holy crap. They discovered, and successfully implemented a novel technique. That's impressive af
1 Antwort Letzte Antwort

15
S softestsapphic@lemmy.world

Yeah that implies physical access.

Like it takes a ceritain security level to even get into rooms that have those switches.

It was probably some IT worker.

Hope they never get caught lol
B This user is from outside of this forum
B This user is from outside of this forum
bjoern_tantau@swg-empire.de

schrieb zuletzt editiert von

#17

Still, you shouldn't be able to get money from having network access. Secure connections are a solved problem.
1 Antwort Letzte Antwort

1
E excessshiv@lemmy.dbzer0.com

I just work a pretty standard engineering job at a large company (basically regular office work, not a critical industry like power or pharma), and any MAC that isn't approved by IT is simply not a allowed to interface with anything whatsoever. It's insane that a bank has this loose IT security.
P This user is from outside of this forum
P This user is from outside of this forum
pika@sh.itjust.works

schrieb zuletzt editiert von

#18

, Agreed. Like, I'm not surprised that it was allowed to interface with the ATM because at that layer, I think the jump would have been from the switch to the ATM(although the ATM should habe not accepted the connection imo). So it would have never gone through any security. But it blows my mind that it was allowed to access a mail server as part of the routing, And even more so that it was allowed to go from that mail server to the outside world to establish a second route into the establishment. Like, how did it never hit any type of security or blocker anywhere in that process?
1 Antwort Letzte Antwort

0
F fne8w2ah@lemmy.world

This post did not contain any content.

Cybercrooks use Raspberry Pi to steal ATM cash

: Criminals used undocumented techniques and well-placed insiders to remotely withdraw money

(www.theregister.com)
J This user is from outside of this forum
J This user is from outside of this forum
jaded99@lemmy.world

schrieb zuletzt editiert von

#19
1 Antwort Letzte Antwort

0
F fne8w2ah@lemmy.world

This post did not contain any content.

Cybercrooks use Raspberry Pi to steal ATM cash

: Criminals used undocumented techniques and well-placed insiders to remotely withdraw money

(www.theregister.com)
J This user is from outside of this forum
J This user is from outside of this forum
jaded99@lemmy.world

schrieb zuletzt editiert von

#20

https://giphy.com/gifs/jess-money-terminator-2-26n6PuZLWc5SkQ7bq
1 Antwort Letzte Antwort

0

Anmelden zum Antworten

P

Blocking real-world ads: is the future here?
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
33

1

198 Stimmen

33 Beiträge

686 Aufrufe

S

Also a work of fiction
R

Actively exploited vulnerability gives extraordinary control over server fleets
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
3

1

41 Stimmen

3 Beiträge

38 Aufrufe

M

Does anybody know of a resource that's compiled known to be affected system or motherboard models using this specific BMC? Eclypsium said the line of vulnerable AMI MegaRAC devices uses an interface known as Redfish. Server makers known to use these products include AMD, Ampere Computing, ASRock, ARM, Fujitsu, Gigabyte, Huawei, Nvidia, Supermicro, and Qualcomm. Some, but not all, of these vendors have released patches for their wares.
P

Microsoft Came to Bargain: Use OneDrive for Device Backup, Opt into Loyalty Program and Use Their Products Till You Earn 1000 Points or Pay $30 and They Might Give You Security Updates till Oct 2026.
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
55

1

147 Stimmen

55 Beiträge

739 Aufrufe

0

I meant to download from the official Microsoft site. Kudos on getting your mum on Linux! I was unable to keep mine on it : / Maybe I'm missing something, but this is from the "Download Windows 11 Disk Image (ISO) for x64 devices" section from the official Microsoft site, but I don't see any option to buy or mention of it: Before you begin downloading an ISO Make sure you have: An internet connection (internet service provider fees may apply). Sufficient data storage available on the computer, USB, or external drive you are downloading the .iso file to. A blank DVD disc with at least 8GB (and DVD burner) to create a bootable disc. We recommend using a blank USB or blank DVD, because any content on it will be deleted during installation. If you receive a “disc image file is too large” message while attempting to burn a DVD bootable disc from an ISO file, consider using a higher capacity Dual Layer DVD.
P

Judge Rules Training AI on Authors' Books Is Legal But Pirating Them Is Not
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
254

616 Stimmen

254 Beiträge

6k Aufrufe

N

That’s a very emphatic restatement of your initial claim. I can’t help but notice that, for all the fancy formatting, that wall of text doesn’t contain a single line which actually defines the difference between “learning” and “statistical optimization”. It just repeats the claim that they are different without supporting that claim in any way. Nothing in there, precludes the alternative hypothesis; that human learning is entirely (or almost entirely) an emergent property of “statistical optimization”. Without some definition of what the difference would be we can’t even theorize a test
D

‘It’s terrifying’: WhatsApp AI helper mistakenly shares user’s number
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
1

1

0 Stimmen

1 Beiträge

17 Aufrufe

Niemand hat geantwortet
D

Frequent TikTok users in Taiwan more likely to agree with pro-China narratives, study finds
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
33

1

149 Stimmen

33 Beiträge

285 Aufrufe

B

That’s not the right analogy here. The better analogy would be something like: Your scary mafia-related neighbor shows up with a document saying your house belongs to his land. You said no way, you have connections with someone important that assured you your house is yours only and they’ll help you with another mafia if they want to invade your house. The whole neighborhood gets scared of an upcoming bloodbath that might drag everyone into it. But now your son says he actually agrees that your house belongs to your neighbor, and he’s likely waiting until you’re old enough to possibly give it up to him.
P

“Treat Online Abuse Like Spam”: New Report Urges Social Media Platforms to Fight Online Abuse with Tools Users Can Control
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
3

1

0 Stimmen

3 Beiträge

37 Aufrufe

E

Nextdoor is an absolute black hole social media site, it absorbs the worst of humanity so we don't have to see them anywhere else.
T

Pope Betting Odds: Bettors Lose Millions Predicting the New Pope as Polymarket Edge Fizzles Out
Beobachtet Ignoriert Geplant Angeheftet Gesperrt Verschoben Technology technology
4

1

56 Stimmen

4 Beiträge

46 Aufrufe

C

!upliftingnews@lemmy.world