Agile Digital Transformation

Agile Digital Transformation

Subscribe to Agile Digital Transformation: eMailAlertsEmail Alerts newslettersWeekly Newsletters
Get Agile Digital Transformation: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Agile Digital Transformation Authors: Liz McMillan, Pat Romanski, Jason Bloomberg, Elizabeth White, SmartBear Blog

Related Topics: Agile Digital Transformation

Blog Feed Post

ATM ‘Jackpotting’ Attacks Reveal Deeper Problems

Last month, fellow Forbes contributor Lee Mathews reported on the recent wave of ‘Jackpotting’ attacks on ATMs in the United States. Jackpotting is where a hacker installs malware on an ATM causing it to spit out all its money.

Since legendary hacker Barnaby Jack demonstrated the ease of jackpotting at a Black Hat conference in 2010, people have been expecting such attacks to eventually hit the US.

Cutlet Maker user interface.

Cutlet Maker user interface.

With the US Department of Justice’s recent arrest of two men involved in this malfeasance on US soil, it’s now clear that jackpotting is a real threat here. The question remains, however: just how big?

Will hackers hit all the ATMs, or is it a simple matter to prevent further attacks? And why were ATMs still so vulnerable to this attack, eight years after jackpotting came to the attention of the ATM manufacturers as well as their customers?

And perhaps the most important question of all: what does the jackpotting trend mean for cybersecurity in general?

Making Cutlets

This story begins, as so many hacking stories do, on the Dark Web – hidden areas of the Internet where criminals do business.

A simple search on a malware portal turns up Cutlet Maker – the core malware package that instructs certain ATMs to spit out their dough. “Cutlet Maker requires almost no advanced knowledge or professional computer skills from the criminal,” reports Konstantin Zykov, developer and security researcher at Kaspersky Lab. “Cutlet Maker interacts with the ATM’s software and hardware, encountering almost no security obstacles at all.”

Read the entire article at https://www.forbes.com/sites/jasonbloomberg/2018/02/12/atm-jackpotting-attacks-reveal-deeper-problems/

Intellyx publishes the Agile Digital Transformation Roadmap poster, advises companies on their digital transformation initiatives, and helps vendors communicate their agility stories. As of the time of writing, Accelerite is an Intellyx customer. None of the other organizations mentioned in this article are Intellyx customers. Image credit: anonymous creator of Cutlet Maker.

Read the original blog entry...

More Stories By Jason Bloomberg

Jason Bloomberg is a leading IT industry analyst, Forbes contributor, keynote speaker, and globally recognized expert on multiple disruptive trends in enterprise technology and digital transformation. He is ranked #5 on Onalytica’s list of top Digital Transformation influencers for 2018 and #15 on Jax’s list of top DevOps influencers for 2017, the only person to appear on both lists.

As founder and president of Agile Digital Transformation analyst firm Intellyx, he advises, writes, and speaks on a diverse set of topics, including digital transformation, artificial intelligence, cloud computing, devops, big data/analytics, cybersecurity, blockchain/bitcoin/cryptocurrency, no-code/low-code platforms and tools, organizational transformation, internet of things, enterprise architecture, SD-WAN/SDX, mainframes, hybrid IT, and legacy transformation, among other topics.

Mr. Bloomberg’s articles in Forbes are often viewed by more than 100,000 readers. During his career, he has published over 1,200 articles (over 200 for Forbes alone), spoken at over 400 conferences and webinars, and he has been quoted in the press and blogosphere over 2,000 times.

Mr. Bloomberg is the author or coauthor of four books: The Agile Architecture Revolution (Wiley, 2013), Service Orient or Be Doomed! How Service Orientation Will Change Your Business (Wiley, 2006), XML and Web Services Unleashed (SAMS Publishing, 2002), and Web Page Scripting Techniques (Hayden Books, 1996). His next book, Agile Digital Transformation, is due within the next year.

At SOA-focused industry analyst firm ZapThink from 2001 to 2013, Mr. Bloomberg created and delivered the Licensed ZapThink Architect (LZA) Service-Oriented Architecture (SOA) course and associated credential, certifying over 1,700 professionals worldwide. He is one of the original Managing Partners of ZapThink LLC, which was acquired by Dovel Technologies in 2011.

Prior to ZapThink, Mr. Bloomberg built a diverse background in eBusiness technology management and industry analysis, including serving as a senior analyst in IDC’s eBusiness Advisory group, as well as holding eBusiness management positions at USWeb/CKS (later marchFIRST) and WaveBend Solutions (now Hitachi Consulting), and several software and web development positions.