Pornographic video at D.C.’s Union Station disassembled; content provider takes responsibility, claims it wasn’t a hack

By | May 23, 2017

A kiosk in a public transit station displayed pornographic content because the software was not properly locked down.

Source: www.kioskmarketplace.com

Writeup by Maras from point of view of software provider.  Our take? 

 
I think the Ping guy is being disingenuous when he says he wasn’t hacked.​ “Breaking into the desktop” is a hack in itself.  Was there malware which modified some existing code?.. no. But that isn’t what people are supposed to guard against.  He was hacked.
 
A little disappointing that his protection is predicated on his image build containing his tools.  And he said he “checked every single unit” like he went pc by pc.  No mention of overall remote management and control.
 
They never configured their Win10 correctly (and imaged it as such) and my guess is they are on consumer version.
 
Given all that the odds are very good that he’ll get “hacked” again sounds like to me…
Author: Kiosk Industry

Kiosk manufacturer experience since 1993. Engineer for Verizon Bill Pay kiosks while at KIS in Colorado. Extensive device knowledge for printers, scanners, currency, PCI, ADA, touch screen technology, outdoor, biometrics such as fingerprint and IRIS. Runs and manages the current kiosk association, KMA. Works with U.S. Access Board on ADA and accessibility. PCI SSC participating organization. Member of National Retail Federation (NRF) and National Restaurant Association.