A security researcher has uncovered nine vulnerabilities in CryptWare CryptoPro Secure Disk software used in ATMs and corporate security programs. The discovery raises questions about the software's effectiveness, particularly as it relates to a major ATM manufacturer, Diebold Nixdorf. While the researcher claims potential risks for cash theft, Diebold disputes this, stating that CryptoPro is not fundamental to their systems.
The vulnerabilities include issues that could expose sensitive data during pre-boot and allow unauthorized access to ATM software. This highlights concerns regarding the security of financial technologies and the importance of protecting cryptographic keys.