| Security experts hack payment terminals to steal credit card info, play games Jul 27th 2012, 10:41  If a payment terminal could be forced into servitude as a crude handheld gaming device, what else could it be made to do? Researchers at the Black Hat conference showed just what mischief a commonly used UK PoS terminal could get up to when they inserted a chip-and-pin card crafted with malicious code. That enabled them to install a racing game and play it, using the machine's pin pad and screen. With the same hack, they were able to install a far less whimsical program as well -- a Trojan that could record card numbers and PINs, which could be extracted later by inserting another rogue card. On top of that, criminals could use the same method to fool the terminal into thinking a transaction was bank-approved, allowing them to walk out of a store with goods they hadn't paid for. Finally, the security gurus took a device popular in the US, and used non-encrypted ethernet communication between the terminal and other peripherals to hack into the payment device and take root control. Makes you want to put those credit cards (and NFC devices) away and stick to cash -- at least you can see who's robbing you blind. [Original image credit: Shutterstock] Filed under: Misc. Gadgets Security experts hack payment terminals to steal credit card info, play games originally appeared on Engadget on Fri, 27 Jul 2012 06:41:00 EDT. Please see our terms for use of feeds. Permalink |  PC World | Email this | Comments | | Man acquitted as #TwitterJokeTrial appeal ends in victory Jul 27th 2012, 09:30  Paul Chambers, who was previously found guilty of sending a "menacing tweet," has been acquitted by the High Court after two-and-a-half years trapped in legal limbo. On hearing of the closure of his local airport, the 27-year-old had sent out a facetious tweet to his 600 followers that mentioned "blowing the airport sky high!" However, despite airport authorities realizing the message was a joke, the UK's Crown Prosecution Service took the man to court and won. The social network quickly rallied around, with many repeating the tweet with the hashtag #IAmSpartacus and involving celebrities such as Stephen Fry, who helped raise funds to launch an appeal. The court today found that its joking nature was "obvious" and that it was sent by someone who did not hide their identity -- clearing Mr. Chambers name once and for all. For the record, here was the original tweet with expletives removed: "C**p! Robin Hood Airport is closed. You've got a week and a bit to get your s**t together, otherwise I'm blowing the airport sky high!!" Man acquitted as #TwitterJokeTrial appeal ends in victory originally appeared on Engadget on Fri, 27 Jul 2012 05:30:00 EDT. Please see our terms for use of feeds. Permalink | David Allen Green (Twitter) | Email this | Comments | |
