Vulnerability cyber

Diebold Nixdorf

Aug 10, 2024 1 min read
Diebold Nixdorf

Independent researcher Matt Burch disclosed vulnerabilities in Diebold Nixdorf's ATM security solution, Vynamic Security Suite (VSS), during the Defcon security conference. The findings showed potential for attackers to circumvent hard drive encryption and gain full control over the machines if the patches are not applied, posing significant risks of financial data breach and unauthorized cash withdrawals. The unencrypted Linux partition used in the dual-boot configuration of the ATMs exacerbated the issue, allowing the exploitation path. Although Diebold has patched the issues, Burch suggested that patches might not be consistently deployed across all ATMs.

Source: https://www.wired.com/story/vss-atm-vulnerabilities-defcon-2024/

TPRM report: https://scoringcyber.rankiteo.com/company/diebold

"id": "die000081024",
"linkid": "diebold",
"type": "Vulnerability",
"date": "8/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Financial Services',
                        'name': 'Diebold Nixdorf',
                        'type': 'Company'}],
 'attack_vector': 'Hard Drive Encryption Bypass',
 'data_breach': {'data_encryption': 'Hard Drive Encryption',
                 'type_of_data_compromised': 'Financial Data'},
 'description': 'Independent researcher Matt Burch disclosed vulnerabilities '
                "in Diebold Nixdorf's ATM security solution, Vynamic Security "
                'Suite (VSS), during the Defcon security conference. The '
                'findings showed potential for attackers to circumvent hard '
                'drive encryption and gain full control over the machines if '
                'the patches are not applied, posing significant risks of '
                'financial data breach and unauthorized cash withdrawals. The '
                'unencrypted Linux partition used in the dual-boot '
                'configuration of the ATMs exacerbated the issue, allowing the '
                'exploitation path. Although Diebold has patched the issues, '
                'Burch suggested that patches might not be consistently '
                'deployed across all ATMs.',
 'impact': {'data_compromised': 'Financial Data', 'systems_affected': 'ATMs'},
 'motivation': ['Financial Data Breach', 'Unauthorized Cash Withdrawals'],
 'post_incident_analysis': {'corrective_actions': 'Patches Applied',
                            'root_causes': 'Unencrypted Linux Partition in '
                                           'Dual-Boot Configuration'},
 'references': [{'source': 'Defcon Security Conference'}],
 'response': {'remediation_measures': 'Patches Applied'},
 'title': 'Vulnerabilities in Diebold Nixdorf ATM Security Suite',
 'type': 'Vulnerability Exploitation',
 'vulnerability_exploited': 'Unencrypted Linux Partition in Dual-Boot '
                            'Configuration'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.