Simuna InfosecSIMUNA INFOSEC
Technical

ATM Security Testing: Physical and Logical Assessment of Automated Teller Machines for Malaysian Enterprises

ATMs combine physical devices with networked computers. Testing for jackpotting, skimming, and network-based attacks. Guidance for MY market.

ATMs are networked computers dispensing cash — making them uniquely attractive targets. Security testing covers: network security (are ATMs properly segmented from the bank network?), operating system hardening (many ATMs still run embedded Windows), application whitelisting (can unauthorised software run?), physical tamper detection, skimming device detection, and the ATM communication channel security between the terminal and the bank host. ATM security testing requires careful coordination with the operating bank.