How much does it take to hack a mobile network?
Is electronic government secure
in the era of WikiLeaks and Anonymous?

Is SCADA hacking a Hollywood fiction
or the nowadays reality?
Internet banking: is there any chance to win
over the fraudsters?

Cyber-crimes, cyber-espionage, cyber-war: where do we draw a borderline?


Thursday, May 31, 2012

Once Again about Remote Banking Security

There is a specific section in the information security forum Positive Hack Days called Ways to Protect Money taking place in the Digital October Center these days, where leading experts from Russia and other countries speak about the issues of the banking security.

For the $natch competition, we have developed our own remote banking system containing common vulnerabilities detected by the experts of Positive Technologies in the course of such systems analysis.

Participants of the $natch contest were to demonstrate their knowledge and skills in exploiting typical vulnerabilities of the remote banking servers. There was a certain amount of money in our “protected” I-bank (conditions were near to the actual).

The hackers were to detect the remote banking vulnerabilities and use them to withdraw money within a limited time during the second stage of the competition. Participants were awarded with the withdrawn amounts. They could cash out their money from an ATM using the following PHDays cards:

And still there’s more to come! We are going to repeat this competition, but this time the teams of Positive Hack Days CTF will work on protection of the remote banking systems (4 hours to search and eliminate vulnerabilities), and then the Internet users will conduct attacks in the course of the Online HackQuest competition.

On May 31 at 6 p.m. the Internet users will penetrate to the CTF network via VPN and start attacking the remote banking systems.
Transferring money from the accounts of the CTF participants by exploiting remote banking vulnerabilities you can affect the final rating of the teams taking part in PHDays CTF 2012.

Please follow the links for the testing versions of the remote banking systems:
Use any of 4 accounts to withdraw money:
  • 91307430600804200281 Anonymous
  • 91307430600372200346 LulzSec
  • 91307430600128500473 Offshore of Potato
  • 91307430600296700514 International Fund for French Fries Welfare
Succeed in the competition as the $natch participants did! Enjoy the battle against the CTF teams and become even more skilled in detecting and exploiting typical vulnerabilities of the remote banking systems!

P. S. It’s worth reminding that the remote banking system has been developed by the experts of Positive Technologies for the purposes of PHDays 2012. It contains typical remote banking vulnerabilities and is not an actual bank system.


  1. Hello,

    These 2 links are dead:

    Can you reupload the file please?

  2. Well, customers only attracts when banks offers security as well as privacy with long term beneficial plans.

  3. I install iBank on server. I try to access but It must fill username or password that I don't know

  4. Thanks for providing the source code... Been looking into web service strengthening, so this will help a lot :)

  5. Please provide the username and password.

  6. Very informative article no doubt. Thanks for sharing the info!

  7. root phd2012 is the login

  8. This is a great post; it was very edifying. I look ahead in reading more of your work.generators 2016

  9. Sorry ALl.Got it .. When i clicked below link.

    Please follow the links for the testing versions of the remote banking systems:
    only application source codes with the testing database
    virtual machine with an installed remote banking system

  10. %253Cscript%253Ealert("testingxss :P")%253Cscript%253E

  11. What I really need to read one more time is I am going to write family essay soon so it will be definitely useful.

  12. Thanks for interesting post. I can also suggest taking a look at this online company. On clients demands, best writers can make marketing content, a generic article, or a SEO article.

  13. Wow! It looks very tasty! When you buy essays from custom writing company , you are getting work that meets the highest standards in the industry. Whether you buy term papers for high school or buy research papers for a post-graduate thesis, you can be assured of professional quality writing from our custom writing service. We are so confident in the level of service that we provide, we have guarantees covering all aspects of our services.

  14. "Insightful" is the perfect word to describe this wonderful writing of yours. The artistic blend of this subject with your tone of writing made this a great read. Much love 😘.
    How to bottom

  15. Once you request for our Best Custom Essay Services our writers use a guide in creating your assignments. Each paper is crafted from scratch to guarantee plagiarism free work. Whether you have a topic in mind or require help in choosing the most suitable topic, Buy Pre Written Essays can help get your paper completed.

  16. You are sharing the very informative and great post. It is effortless and easy to understand for me and a great addition for

  17. Get the Digital Marketing and Website Designing Services by OGEN Infosystem in Delhi, India. Like- SEO Services, PPC Services and also creative Website Design for your website.
    Web Design Company in Delhi

  18. Fucked up by someone

  19. Put more information in like this blog, visit OGEN Infosystem (P) Ltd for responsive website design based on device view for your website by experienced website designers and also get SEO Services.
    SEO Service in Delhi

  20. Hi! If you happen to look for a writing help then it's time to apply to the essay writing service for help. For example, you can find there analysis paper example and many other things.

  21. Do you require Annotated Bibliography Powerpoint Presentation from a credible and trusted writing company which guarantees high -quality articles for the client? It can be challenging to acquire secure and confidential Quality Research Papers from a writing company.

  22. Thanks for sharing such a great blog... I am impressed with you taking time to post a nice info.
    iPad Application Development
    Hybrid App Development
    Web Development Services

  23. very nice graphics, your creativity is very impressive. it is very good information for make Creativity
    PHP Development

    Laravel Development Company
    CodeIgniter Development Company
    ASP.Net Development Company