September 12, 2017 | B. SCOTT HARROFF
There is no such thing as “out-of-the-box” security.
No matter what type of self-service terminal or device you have, I am sure it was marketed to come with multi-layered security. And I am pretty sure that it did.
But consider this: How long do those multiple layers continue to protect your devices … especially if left on their own? Terminal security is a 24/7, 365-day-per-year job, and it requires the proper management tools and resources.
As we all have heard, criminals are getting more sophisticated in their attempts to obtain cash or personal information that could deliver value. If you have a 10-foot wall, they will build an 11-foot ladder; if you build it higher, they will build a bigger ladder. That is why it’s imperative that your organization’s self-service environments are properly and continuously protected.
One common mistake we see all the time is financial institutions that do not change the default password for the ATM computer. As an ATM manufacturer, we provide a password for each terminal. However, like all manufacturers in the industry, it is typically a standard default that can be found in our owners’ manuals as well as online. So, right out of the box, if proper governance is not followed, one layer in your terminal’s multi-layer security is at risk.
In addition to changing the password on the ATM computer, that computer must be securely configured to operate accurately in the ATM environment. Proper configuration means locking down the operating system (OS) from unnecessary components and establishing permissions that only allow authorized programs to run – and only allow them to do what they are required to do.
At Diebold Nixdorf, we pride ourselves on having a rich history in security. Our world-leading managed services security experts fully understand the complexities of the self-service environment from a compliance and risk standpoint. We offer our customers the ability to benefit from our knowledge via our Essential and Critical Self-Service Security Services offerings.
Diebold Nixdorf’s Director of Managed Services explains how we approach global security challenges:
We know the bad guys are out there. We see them everywhere, almost everyday. The only way to ensure your data is properly secured is to combat them with proven tools and governance from a trusted partner.
Find out more about our Security and Compliance services.
Ready to lock down your ATM network? Let’s put together a strategy that makes sense for your organization. Contact us today.