Hack the Bank

Typical attacks on ATMs include sensitive information disclosure and unauthorized money withdrawal.

The competition will be divided into two phases.

During first phase attendees will be able to intercept and analyze different types of the traffic (network and USB).

During second phase competitors will be given access to the USB interfaces to issue commands to ATM devices and network interface to conduct MiTM attack.

The goal of the competition is to show different approaches to affect ATM.

Goal of the Competition

/ Disclosure of sensitive card information.

/ Unauthorized cash out.
Transactions tampering via

/ USB/Network (cash out, cash in, PIN pad).

Rules of Engagement

/ Each attendee/team that takes part in the contest will be given bank card and means to obtain network and USB traffic;

/ Any attendee is welcome to participate in the competition, just bring yourself and a laptop to our Hack the Bank ATM;

/ Denial of Service is not allowed;
Report discovered approach for obtaining sensitive information and money withdrawal to the Competition’s Team Members;

/ Points will be given based on the complexity of the finding;
Extra points will be given for attacks over USB;

/ Use tools and scripts of your liking;

/ Any dispute will be resolved on-site by the Competition’s Team Members, who has final decision;

/ Disrespecting any of these rules as well as any offensive action taken against any other participants will result in immediate disqualification;

PRIZES

/ Wifi Pineapple Nano

/ Alfa Network AWUS036ACH USB 3.0 WIFi AC long range ,high penetration,Dual band 2.4 / 5ghz Standard’s 802.11a, 802.11b, 802.11g, 802.11N, 802.11ac ,RPSMA antennas x 2

ORGANIZERS

/ Alexey Osipov, Head of Penetration Testing at Kaspersky Lab

/ Olga Kochetova, Senior Application Security Specialist at Kaspersky Lab

SPONSORED BY
HACKING VILLAGE

Other Competitions

Lock Picking Village

Break a combination lock of beginner/average difficulty and get a lock picking set.

Target John

Target John is a competition where participants receive several details about a real target and they have to ..

Brainpick CTF

In a world where Black Mirror and 1948 are becoming reality, profiling a given person is only a matter of ..
0
SPEAKERS
0
COUNTRIES
0
ATTENDEES
0
HACKING
COMPETITIONS
0
COMPANIES

Sponsors & Partners

They help us make this conference possible.

POWERED BY

As an infrastructure operator, technology integrator and IT&C services provider, Orange Business Services supports businesses and public entities in their digital transformation. Collect, transport, protect, store and process and analyze: they orchestrate every phase of the data journey, for your business to create even more value.

WWW.ORANGE.RO

PLATINUM PARTNERS

Ixia provides testing, visibility, security solutions, network testing tools and virtual network security solutions to strengthen applications across physical and virtual networks.

WWW.IXIACOM.COM

Secureworks provides threat intelligence-driven security solutions for organizations to prevent, detect, rapidly respond and predict cyberattacks.

WWW.SECUREWORKS.COM

GOLD PARTNERS
SILVER PARTNERS
GAMING PARTNERS
VIP & SPEAKER LOUNGE PARTNER
BRONZE PARTNERS
COMMUNITY & MEDIA PARTNERS