I saw this on the NEISG mailing list a while back…just came across it again. A thief plugged an MP3 player into the phone line of an ATM and recorded the sounds. From there he was able to decipher card numbers and expiration dates. Apparently they were either not encrypted or weakly encrypted. My bet is the former.
It is scary how many people think that “private” circuits that ISP’s and Telco’s offer are actually “private”.
–Chris
Technorati Tags: MP3, ATM, Theft, Information Security
December 19th, 2006 at 3:43 pm
What do you think of Phil Zimmermann’s Zfone project. I did an interview with him recently and he emphatically said that unencrypted VoIP is not safe and exploitable. He said not to use VoIP unless you used encrypting software with no decryptions (man-in-the-middle)along the internet pipeline.
Now I have to find your podcasts! thanks. very interesting!!
January 18th, 2007 at 2:45 am
Hey! Chris!
Get bloggin’, mister! Otherwise I’ll have to hijack your site and post for myself just to relieve the agony of not getting to read my favorite blog!
..Because we all know I’m capable of that.. Pfft.
All issues are understood but I just miss ‘ya!