It will be interesting to see if an attempt is made by the companies using/selling this ATM from the person committing the fraud to recoup the cost of "new and improved security measures", but hopefully this case would be close enough to the real world for this not to get past a jury/the courts.
While we all "know" that "security through obscurity" doesn't work, it will be interesting to see what it takes change things, as so far,
the outcry over the loss of private information isn't working ... will share holder backlash through lost profits do it, or will it be Sarbanes-Oxley - as the financial records from this ATM, and presumably others would be difficult to guarentee as accurate.
While we all "know" that "security through obscurity" doesn't work, it will be interesting to see what it takes change things, as so far,
the outcry over the loss of private information isn't working ... will share holder backlash through lost profits do it, or will it be Sarbanes-Oxley - as the financial records from this ATM, and presumably others would be difficult to guarentee as accurate.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/newsbriefs/310/1391#1391