WIRED reports on another ATM manufacturer that printed the default master passwords to their ATM machines directly in their user manuals. Future Crime readers will recall that I previously reported on a similar issue with the Tranax ATM.
Of course the ATM users could change these passwords, but since the machine does not require them to do so, many simply don’t. As is so often the case, good security starts with common sense, thinking about the problem from the user’s perspective, and a little bit of thoughful design. It seems Triton could use some help in this area.