All the latest UK technology news, reviews and analysis
|
|
|
24 Feb 2003
Two Cambridge University computer scientists have warned that corrupt bank employees could exploit computer hardware flaws to gain access to cash card Pins.
According to the New Scientist, Mike Bond and Piotr Zielinski claim that the vulnerability centres on employees who could exploit weaknesses in internal banking systems.
Under normal circumstances it would take around 5,000 attempts to guess a Pin, but cash machines lock out after three attempts.
But banks' internal systems are not all protected in the same way, so an unscrupulous employee could make many more attempts to guess the code.
By using simple brute force attacks on unprotected systems inside a bank's infrastructure it could be possible to crack a Pin in just 15 attempts.
According to the scientists' research, thieves with access to banking systems using a more complex technique could harvest 14,000 Pins in one hour.
The scientists warned that the fraud could generate millions from the sale of stolen codes, or from the manufacture of cloned cards used to access the compromised bank accounts.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Sneak peek at the forthcoming glass-based machine
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Assistant Director - Infrastructure - London - required...
A well established homeware brand is looking for an experienced...
Join a team that is revolutionising the way media is...
Linux Server Support Analyst - Bristol/Bath £20,000 plus...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?