BrinksCompuSafe Galileois a highly sophisticated and modernized safe that is marketed by Brinks as a easy cash management option.
However Petro and Salazar took a special liking to this particular safe and started testing it for vulnerabilities.
That allowed them to plug in a keyboard and a mouse, which worked.
Nothing good comes from that, Salazar said.
It was a sign of more bad things to come.
Every step of the way, we were like, This cant be possible, Petro said.
They were even able to launch the safes doors by editing one of the database files.
You could very easily make the safe lie about the cash total it has, he said.
Bishop Fox had contacted the Brinks security team a year back but they have not yet patched the vulnerability.
To compound the problem, the software is apparently made by a third party provider called FireKing Security Group.
Brinks has not yet commented on the issue.
Resource :PC World.
source: www.techworm.net
