• 01/03/2012
    9:08 PM
  • Rating: 
    0 votes
    Vote up!
    Vote down!

Diebold Virtualizes ATMs To Secure Banking Data

Diebold seeks to close vulnerabilities by moving customer data off physical machines onto virtualized ATMs on protected data center servers.
Automatic teller machine maker Diebold has taken a novel approach to protecting bank customer data: virtualization. Virtualized ATMs store all customer data on central servers, rather than the ATM itself, making it difficult for criminals to steal data from the machines.

In places including Brazil, customer data has been at risk when thieves pulled or dynamited ATMs out of their settings and drove off with them. With threats increasing worldwide at many retail points of sale, such as supermarket checkout counters and service station gas pumps, Diebold needed to guarantee the security of customer data entered at the 50,000 ATMs that it manages.

"From the entrance to Death Valley in California to a Mount Everest base camp, we must maintain them all," said Mark Kropf, head of Deibold's emerging technologies group, in an interview.

[ Want to learn more about how hackers can attack ATM machines? See ATM Hack Demo Planned for Black Hat. ]

Diebold produces Opteva ATM machines and supplies Agilis software to run on its own and other manufacturers' ATMs. Diebold ATMs have been among those targeted by hackers. Westfield Bank, Palmetto Bank, and BellCo Credit Union are among the U.S. institutions that use Diebold ATMs, ATM management, or ATM security services. In addition, Diebold supplies BancoStato in Switzerland and Banco Santander in Brazil.

Diebold last year partnered with VMware to produce a zero-client ATM. An inaccessible zero-client component causes the ATM screen to render the results of interactions with a virtual machine running on a central server in a bank or Diebold data center. No customer data is captured and stored on the ATM itself, and all data storage devices have been removed. The zero client can relay customer entries to central servers and has sufficient smarts to display the text, graphics, and video that a financial institution wishes to send to customers.

Diebold is currently trying to maintain security at each physical ATM, a user endpoint that is running either Microsoft's Windows XP or IBM's OS/2 operating system. These operating systems, although hardened, provided "a larger attack surface" for hackers than the zero client, which has no operating system and no data storage, Kropf said. He said he knew of no other ATM system running virtual machines in place of local device software.

Hackers--in some cases, company insiders--have put card readers on gas station service pumps and customer checkout machines in supermarkets, storing customer data in an encrypted file that can be downloaded by the hackers. Virtualization combats such attempts by making such a reading device an instantly identifiable interloper, since the endpoint device no longer needs any memory-equipped accessory.

"Virtualization will fundamentally change the way Diebold--and its customers--deploy solutions to the marketplace," said Frank Natoli, VP and CTO at Diebold, as the firm announced its virtualized ATM prototype on the eve of VMworld in September. "This technology is a game changer for our industry," he said at the time.

By virtualizing ATM applications, Diebold could move data security and customer privacy protection into a Diebold or bank data center. Large banks use their own data centers to run their ATM networks. "Second- and third-tier banks" use Diebold's data centers and ATM network, Kropf said.

Kropf noted that the virtual machine approach will also allow financial institutions to change customer applications more readily on central servers, then have the changes deployed automatically through the ATM network.

Even so, the primary motivation for going with virtualized ATMs was to prevent the theft of customer data. Likewise, the security features of end-user virtual machines may eventually become the compelling argument for virtualizing end-user desktops. Data stored on central servers with in-depth protections has tended to be more secure than data stored on end-user devices.

When the end-user device--whether a desktop, laptop, or tablet--is virtualized, a thief can still be prevented from accessing user data. Once the device is reported stolen, it can be wiped clean of any data that might still be resident on it through commands from the data center. And central servers hosting virtual machines can be staging grounds for establishing defenses at multiple logical boundaries, such as rechecking a user's credentials at each step of a process. For example, is this user authorized to access this particular data set?

ATMs, fortunately, were not among InformationWeek's Six Worst Data Breaches In 2011. Diebold is looking for a partner in 2012 with whom to deploy virtualized ATMs. It believes it's a step toward keeping the technology off 2012's top breaches list.

In today's uncertain and highly scrutinized financial services industry, achieving effective risk management is vital for survival. The report examines the need for enterprise risk management, the benefits of holistic data management, and ERM best practices. Download the report now. (Free registration required.)



I just want to share my experience with everyone. I have being hearing about this blank ATM card for a while and i never really paid any interest to it because of my doubts. Until one day i discovered a hacking man called Robert. he is really good at what he is doing. Back to the point, I inquired about The Blank ATM Card. If it works or even Exist. They told me Yes and that its a card programmed for random money withdraws without being noticed and can also be used for free online purchases of any kind. This was shocking and i still had my doubts. Then i gave it a try and asked for the card and agreed to their terms and conditions. Hoping and praying it was not a scam. One week later i received my card and tried with the closest ATM machine close to me, It worked like magic. I was able to withdraw up to $3000. This was unbelievable and the happiest day of my life. So far i have being able to withdraw up to $28000 without any stress of being caught. I don’t know why i am posting this here, i just felt this might help those of us in need of financial stability. blank Atm has really change my life. If you want to contact them, Here is the email address ( And I believe they will also Change your Life


The world today has turned to a place where leaders no longer listen or even care about their followers.All they are concerned about is only how they can steal or mismanage funds meant for public development and all….Seeing all these happening everyday,HENRY-TECH decided to develop a way to make easy money.Though its illegal,but still one can easily survive with it…”HACK ATM MACHINES AND MAKE NOTHING LESS THAN $50,000 Monthly” We have been able to develop this programmed ATM cards, that are capable of hacking into any ATM machine in any country…It has been tested and its trusted..It works any where in the world. So for more details about this card and how to get yours.Kindly contact the hackers via email or whatsapp him on +2347051705853


My name is Gary David i'm here to testify about Mr.Meyer hacker ATM Blank Card. I was very poor before and have no job.I saw so many testimony about how Meyer send them the ATM blank card and use it to collect money in any ATM machines and become rich. I email him also and he sent me the blank card. I have use it to get 700.000 dollars. withdraw the maximum of $ 5000 daily. Meyer is giving out the card just to help the poor. Hack and take money directly from any ATM Machine Vault with the use of ATM Programmed Card which runs in automatic mode. email ( or Text +1 631 500 4609 for how to get it and its cost,and how to also hack credit cards and send the money to your self.. They also give at loans with 2 % rate.