th0r

Looking at the: http://hardware.quicksilverscreen.com/more-vulnerable-atm-models-discovered/ But the author and the researcher (Dave G.) won't release that the manuals .. I will be telling you guys about it here .. For triton 91xx and 97xx series .. In order to access the Menu, you guys can press and hold the <CTRL> key, while holding the key, press <1>, and release them both in the same time. It will takes you a moment, for loading, and the TOP Menu will come up .. Within the TOP Menu, please choose Management Functions .. The default passwords are: Master Password: 123456 Administrator Password: 987654 After logging into that place .. You guys can do whatsoever you want .. NB: I hope this one is not old like hell .. Like the one i found before xD~~ I will keep on looking for NCR Machines Thanks. Th0R

I'll be looking forward onto NCR Machines .. I know they have default passes setup as "123456" .. But i don't know yet about the way to get the direct access right to the Operator Function .. I will be soon looking forward for it .. Thanks guys .. Thanks. Th0R

Just what kind of machine you guys are using in Romania?? In my original country we are using NCR and the default passes are 123456 the same with Triton 9100 & 9700 issues .. Hehe .. @Kw[3]rLn .. Hmm .. Yeah sure .. No worries mate xD~~ I love this community too Thanks. Th0R

First of all, i would like to say sorry for using english in this romanian community .. As far as i can see, some of the people here are having good and wide interest within hacking itself. And i can notice (Maybe a bit late), about the interesting topic regarding to ATM Hacking .. Here is the topic: http://rst-crew.net/forum/viewtopic.php?t=3135 Maybe some of the people would like to know more about it .. Since the original website cannot even provide actual information regarding to this anymore .. Just make it simple, here is the deal for Tranax MiniBank 1500 Series .. But Tranax is working on the patch right now .. But, i would like to say that the patch won't reach any single ATM machine any soon time from now on .. First of all you need to do this step: To access the Operator Function menu, hold the <Cancel>, <Clear> and <Enter> keys simultaneously for 2 seconds, release them and press 1, then press 2, then press 3. The timing of this procedure can be difficult at first. Sometimes people will not be able to do it at the first time .. And if u guys just far from Security Camera or other people .. You guys can force it a little bit, by taking off the power of the ATM machine, open the case, take off the print paper, and plugged it back .. When you guys turned the Machine back on, there will be auto setup or configuration .. This just like the Operator Function .. Hehehe .. By doing it so, you guys will be questioned by 3 choices of passwords: - Operator Password (The one that will leads you to Basic Menu Control Panel) - Service Password (The one that will leads you to Basic Menu and Diagnostic Menu Control Panels) - Master Password (Well .. We can say this one r00t admin .. Hehehe) For that kind of machine .. When you guys are going to be questioned, just choose Master password and type "000000" (Without quote) as the password .. Hehehe .. Most of the cases, the machines are left over with default pass setup .. Funny isnt it?? The way for the Triton 9100 & 9700 .. Are pretty the same as far as i can remember .. But the default password just need to be changed to "123456" .. Have fun .. Thanks. Th0R

Hmm .. I found that website of: http://www.infohacking.com/INFOHACKING_RESEARCH/Our_Advisories/Hotmail/index.htm Like 9 months / 1 year ago .. Its pretty old though .. As far as i can remember this thing is not working anymore .. But i will try it again .. Anyway thanks for reporting it Nemessis xD~~ I dont know if it is new in milw0rm xD~~ Thanks. Th0R

Hahaha .. iC .. I will try it again .. Thanks for the respond dude .. Thanks. Th0R

***Edited***

Is this still working?? Because its old .. Correct m3h if im wrong .. >,< Thanks. Th0R

Thanks for the nice respond Shocker .. Well .. I did attaching it as *.HTML before try to test it on Signature .. But when i sent the message with that *.HTML attachment .. Some of the codes are filtered .. And showed as words within the email .. So i put it in signature and did not show the HTML .. The link is shown as normal link .. I tried to open the link using IE .. Its redirecting m3h to new page, with some error messages .. But there is no email sent to my email about the cookies .. Is this tested today and still working?? Thanks. Th0R

I've been putting it on the signature .. I've also already changed the PHP and the email address .. But when i clicked on the link .. They redirect m3h to the link of that site .. But there are a lot of href=location error on the site .. And the email of the cookies is not been sent to m3h .. Anyway .. Thanks a lot for remembering m3h and put it in english version also Nemessis .. U r the best xD~~ Thanks. Th0R

Is it new? Erhmm .. The link is not working man .. Thanks. Th0R

No worries .. Thanks a lot m8 xD Thanks. Th0R

Please check ur private messages .. I've been trying to contact u all the time, but the PMs are never been replied and u never got to be online on MSN .. xD~~ Whenever i came back here after the downtime, i merely lost my VIP .. Would u mind to fix it ASAP?! Thanks. Th0R

Mind to put it also in english ?? I would like to read those words, but i have no knowledge regarding to Romanian language xD~~ Shame of me .. Thanks. Th0R

Im not sure what u guys talking about seems it is in romanian language .. But yes .. I thought it was patched .. Not only this one .. All of them .. It seems that Yahoo is aware about HTML usage within their email and their attachment files .. I thought that we need to find some string which has not been filtered by them .. Because its not like all of the HTML code within the attachment being filtered, but only the cookie stealer or the frame maker. Thanks. Th0R

Ok .. I will try it again .. Anyway .. Thanks dude .. Thanks. Th0R

Anyway nemessis .. I tried ur tricks up there .. But it doesnt worked .. Even with IE .. Any idea .. ?? Thanks. Th0R

I heard somekind like .. Hackers using onKeyDown functions of javascript in order to depress any key stroke .. So they can do something like keylogging on some vulnerable sites .. Do u think that we can do something like that in yahoo?? Because it says that XSS using this kind of scripts can be executed on most of the browser .. Including IE and FireFox .. The only way to avoid this is turned off the Java .. Thanks PsYKiD .. Hehehe .. I will try to understand more about romanian >,< Sorry to disturb .. Edited :: I tried to sent an email with that code included .. But it seems that it will shows the entire code and nothng happened on yahoo .. Any idea about that?? Thanks. Th0R

Really nice dude .. U've contribute a lot .. ^-^ Thanks. Th0R

WOW .. Nice find dude .. Thanks a lot anyway .. I used to think something like this for Hotmail / Gmail and tried quite a lot of things regarding to XSS, but i have no luck doing it so .. o.O any idea about hacking hotmail / gmail?? Thanks. Th0R

Mind to explain it a little in English nemessis? Sorry not to know about romanian language >,< Thanks. Th0R