Security product designed to protect ATMs is not secure
I don't suppose you would favor us with the Windows OS version that this product runs on? Security cannot be tacked on as an after thought but must be baked into the product. Regardless of how PCI-DSS compliant it is certified as. In the old days updating the software on an ATM required the visit of two technicians with a hardware dongle that they plugged into the ATM. The technicians typed in two unique serial numbers that were used to generate a unique encryption key and used to update the device. Once this was done any future attempt to overwrite the firmware would fail. All such security mitigation devices are rendered useless since the banks moved their ATMs to a toy of an Operating System.
Biting the hand that feeds IT
