+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 17
General Chat Thread, Places still using xp. in General; After April 8th would it be cheeky to ask banks/shops etc for a discount as they cannot guarantee the security ...
  1. #1
    free780's Avatar
    Join Date
    Sep 2012
    Posts
    793
    Thank Post
    37
    Thanked 59 Times in 56 Posts
    Rep Power
    16

    Places still using xp.

    After April 8th would it be cheeky to ask banks/shops etc for a discount as they cannot guarantee the security of our credit card data etc.

  2. #2

    synaesthesia's Avatar
    Join Date
    Jan 2009
    Location
    Northamptonshire
    Posts
    5,485
    Thank Post
    527
    Thanked 876 Times in 683 Posts
    Blog Entries
    15
    Rep Power
    438
    Yes, it'd be cheeky bearing in mind how many places still rock 2000 and NT4 both front and back of shop in an "if it isn't broke, don't fix it" method.

  3. #3

    Join Date
    Apr 2012
    Posts
    1,520
    Thank Post
    411
    Thanked 181 Times in 158 Posts
    Rep Power
    49
    Quote Originally Posted by synaesthesia View Post
    Yes, it'd be cheeky bearing in mind how many places still rock 2000 and NT4 both front and back of shop in an "if it isn't broke, don't fix it" method.
    most ATM's run on 2000 or Xp!

  4. #4

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,390
    Thank Post
    797
    Thanked 1,587 Times in 1,390 Posts
    Blog Entries
    10
    Rep Power
    427
    The bank i used to work for has very nearly replaced all XP machines for 7. Its a shame that other people do not follow.

  5. #5


    Join Date
    Feb 2007
    Location
    51.405546, -0.510212
    Posts
    8,113
    Thank Post
    203
    Thanked 2,385 Times in 1,765 Posts
    Rep Power
    703
    This seems appropriate.

    This talk will discuss a case in which criminals compromised and robbed an ATM by infecting it with specially crafted malware. The successful compromise of an ATM can easily result in the loss of several hundred thousand dollars.

    Most automated teller machines (ATMs) run regular Windows systems and can be controlled like any other computer. The first public demonstration of an ATM hack was given in 2010 - but how bad is this threat really? It turns out there is a multi-million dollar business behind ATM hacks. This talk reveals how these criminal gangs operate by disclosing information obtained through forensic analysis of a real compromise. In the analyzed case some malware was used to control the hacked machine that was written specifically for the targeted ATM brand. By reverse-engineering this malware, we gained unique insights into the technologies used by the intruders. The malicious features range from balance monitoring over cash-out commands to the wiping of the machine to cover up traces of the attack. They can be accessed through special number codes that are entered directly via the machine's number pad.

  6. #6
    mjs_mjs's Avatar
    Join Date
    Jan 2009
    Location
    bexleyheath, london
    Posts
    1,004
    Thank Post
    37
    Thanked 108 Times in 93 Posts
    Rep Power
    36
    You could ask tho I think you'll get funny looks from people who don't really understand what your getting at.

  7. #7


    Join Date
    Jan 2012
    Posts
    1,813
    Thank Post
    546
    Thanked 232 Times in 173 Posts
    Rep Power
    171
    I wonder if it would be worth an FOI request onto what operating systems they use.. Or could they refuse to answer for security reasons? (Which might just be caused by using Windows XP :P)

  8. #8

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    12,966
    Thank Post
    587
    Thanked 1,494 Times in 1,340 Posts
    Rep Power
    397
    FOI only applies to public bodies.

    Ben

  9. #9


    Join Date
    Jan 2012
    Posts
    1,813
    Thank Post
    546
    Thanked 232 Times in 173 Posts
    Rep Power
    171
    Well, today I learned. Hm.

    Personally I'm not too keen on banking with someone that still uses XP, but considering banks are apparently still using much older systems anyway, it appears to be one of those 'You're either way' moments

  10. #10

    synaesthesia's Avatar
    Join Date
    Jan 2009
    Location
    Northamptonshire
    Posts
    5,485
    Thank Post
    527
    Thanked 876 Times in 683 Posts
    Blog Entries
    15
    Rep Power
    438
    The age of a system can also count in it's defence, ala the "security by obscurity" thing. For a few years after an operating system is defunct and likely to be used exploits still be published and used against them, but at a point it becomes less and less common due to the lack of use. I remember reading about one bank in the US who's been using NT4 pretty much since 1999 and still does who have a "deal" with (read- pay a buttload of money to) MS to keep an eye and publish patches etc. I say still does, that was some point last year. XP may be a different case - it's proven popularity and the likelihood of it's use continuing for a few years for some people may mean people keep trying to take advantage of that fact.

  11. #11

    nephilim's Avatar
    Join Date
    Nov 2008
    Location
    Dunstable
    Posts
    11,100
    Thank Post
    1,428
    Thanked 1,693 Times in 1,266 Posts
    Blog Entries
    2
    Rep Power
    364
    My current establishment works with XP, however one condition of being offered the job was that the company makes active progress to upgrading to Win 7 at the least. When I arrived yesterday, half of the company was on Windows 7.

  12. #12


    Join Date
    Jan 2012
    Posts
    1,813
    Thank Post
    546
    Thanked 232 Times in 173 Posts
    Rep Power
    171
    Quote Originally Posted by synaesthesia View Post
    The age of a system can also count in it's defence, ala the "security by obscurity" thing. For a few years after an operating system is defunct and likely to be used exploits still be published and used against them, but at a point it becomes less and less common due to the lack of use.
    At this point, I was going to respond with "Yeah, but if those 'rare users' happen to traffic and house millions, that's a target worth pursuing. Especially if you program for the older systems and release it 'into the wild', when it does come back with a successful infection, high chances are it's something valuable.

    But then you continued..
    Quote Originally Posted by synaesthesia View Post
    I remember reading about one bank in the US who's been using NT4 pretty much since 1999 and still does who have a "deal" with (read- pay a buttload of money to) MS to keep an eye and publish patches etc. I say still does, that was some point last year. XP may be a different case - it's proven popularity and the likelihood of it's use continuing for a few years for some people may mean people keep trying to take advantage of that fact.
    So maybe that won't be the case. Maybe. Far as I see it, until there's a whistleblower we're not going to find out any time soon. If I ran a bank I'd withhold infrastructure information at every possible opportunity to prevent any kind of information getting into the hands of the bad guys (although they will always have their methods..)
    Last edited by Garacesh; 7th January 2014 at 08:49 AM.

  13. #13
    iceman85's Avatar
    Join Date
    Jan 2012
    Location
    Solihull
    Posts
    54
    Thank Post
    7
    Thanked 6 Times in 6 Posts
    Rep Power
    6
    The nhs and pc world are still on xp!

  14. #14

    elsiegee40's Avatar
    Join Date
    Jan 2007
    Location
    Kent
    Posts
    10,046
    Thank Post
    1,680
    Thanked 2,021 Times in 1,495 Posts
    Rep Power
    673
    I read something the other day about floppy disks still being the legal form of submission of certain data to the US IRS (tax authorities) while more modern and secure methods are not... apparently it's in statute and so requires a law change to amend. Antiquated operating systems in banks may not entirely be the fault of the bank!

  15. #15


    Join Date
    Jan 2012
    Posts
    1,813
    Thank Post
    546
    Thanked 232 Times in 173 Posts
    Rep Power
    171
    Quote Originally Posted by iceman85 View Post
    The nhs and pc world are still on xp!
    I'd expect nothing less for PC World

    Quote Originally Posted by elsiegee40 View Post
    I read something the other day about floppy disks still being the legal form of submission of certain data to the US IRS (tax authorities) while more modern and secure methods are not... apparently it's in statute and so requires a law change to amend. Antiquated operating systems in banks may not entirely be the fault of the bank!
    Indeed - I vaguely touched over a similar article, too.
    Realistically we shouldn't have to write into law that banks must or must not use certain operating systems. Given the sheer amount of operating systems out there that are still used (XP, Vista, 7, 8, 8.1, Mac (Can you use older versions of iOS? I'm not sure (Yay! Nested parenthesis!)), Every distro of Linux) the law would require constant maintenance and updating, pruning the list, adding new ones, keeping on top of security updates/patches/exploits and holes.. What would happen if an 'accepted and legal' operating system used by $popularbank turns out to have a huge hole in it? The hole is discovered, but you can't just write out of law that the OS is now illegal to use. Banks wouldn't be able to make the switch so instantly, it's just not feasible for any kind of infrastructure.

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Do you still use tapes?
    By FN-GM in forum Hardware
    Replies: 23
    Last Post: 18th November 2008, 03:47 PM
  2. Using XP or Vista?
    By zag in forum Windows
    Replies: 17
    Last Post: 6th October 2008, 08:55 AM
  3. Replies: 8
    Last Post: 21st January 2008, 12:07 PM
  4. A place still for multibooting
    By ITWombat in forum Windows
    Replies: 7
    Last Post: 4th December 2006, 07:22 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •