Review ATM
Cyber Intelligence
DESCRIPTION:
Due to the critical role that ATMs (cash machines) play in our banking customers’ operations, Silent4Business can perform a comprehensive evaluation of an ATM in Mexico City. These tests follow globally recognized standards and methodologies such as the Payment Card Industry Data Security Standard (PCI DSS), NIST, SANS Institute 560, Offensive Security OSCP, ATMIA/GASA Best Practices for ATM Cyber Security, and OWASP.
DELIVERABLES:
Executive summary (executive presentation):
• Scope of the analysis
• Most vulnerable assets
• Root-cause recommendations
Vulnerability matrix:
• CVE related to the vulnerability (when applicable)
• Risk classification
• Vulnerable asset
• Vulnerable service
• Vulnerability
• Vulnerability description
• Mitigation recommendation
CODE
ATM
BUSINESS LINE
Cibersecurity
CATEGORY
Cyber Intelligence
RESPONSIBLE:
Eduardo Salmerón
METHODOLOGY:
ATM Penetration Testing Methodology
SCOPE:
Logical, physical, and network review: Hardware components; Software components; Operational review; Review of installed applications and services
EXECUTION TIME
Logical, physical, and network review in Mexico City (CDMX) of 1 ATM with credentials – 5 business days