Security News > 2020 > June > Driver Vulnerabilities Facilitate Attacks on ATMs, PoS Systems

Driver Vulnerabilities Facilitate Attacks on ATMs, PoS Systems
2020-06-30 03:41

Driver vulnerabilities can facilitate attacks on ATMs, point-of-sale systems and other devices, firmware security company Eclypsium warned on Monday.

The firm now warns that the Windows drivers used in ATMs and PoS devices can be highly useful to threat actors targeting these types of systems.

According to Eclypsium, vulnerabilities affecting the drivers running on ATMs or PoS devices could allow attackers to escalate privileges and gain "Deeper access" into the targeted system.

The security firm described a vulnerability found by its researchers in a driver present on Diebold Nixdorf ATMs. The driver in question provides access to x86 I/O ports, which is fairly limited in terms of functionality compared to other drivers.

Eclypsium believes there are likely many other vulnerable drivers that expose ATMs to attacks and they could be affected by even more serious security holes.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/OnRzX84qwdw/driver-vulnerabilities-facilitate-attacks-atms-pos-systems