Hacked ATM

An automated teller machine (ATM) or the automatic banking machine (ABM) is a computerized telecommunications device that provides the clients of a financial institution with access to financial transactions in a public space without the need for a cashier, human clerk or bank teller. On most modern ATMs, the customer is identified by inserting a plastic ATM card with a magnetic stripe or a plastic smartcard with a chip, that contains a unique card number and some security information, such as an expiration date or CVVC (CVV). Authentication is provided by the customer entering a personal identification number (PIN).

With the migration to commodity PC hardware, standard commercial “off-the-shelf” operating systems and programming environments can be used inside of ATMs. Typical platforms previously used in ATM development include RMX or OS/2. Today the vast majority of ATMs worldwide use a Microsoft OS, primarily Windows XP Professional or Windows XP Embedded. A small number of deployments may still be running older versions such as Windows NT, Windows CE or Windows 2000. Notably, Vista was not widely adopted in ATMs, and as at October 2009 no bank has announced a Windows 7 deployment. Java, Linux and Unix may also be used in these environments, but such deployments are rare.

Linux is also finding some reception in the ATM marketplace. An example of this is Banrisul, the largest bank in the south of Brazil, which has replaced the MS-DOS operating systems in its ATMs with Linux. Banco do Brasil is also migrating ATMs to Linux.
Security, as it relates to ATMs, has several dimensions. ATMs also provide a practical demonstration of a number of security systems and concepts operating together and how various security concerns are dealt with.