in news from the crypto world:
http://www.cl.cam.ac.uk/~rnc1/descrack/
some fellows in britain have found a way to extract the secure keys from the ibm 4758 processor that runs atm machines, etc.
a few worthwhile points from the faq at the URL above:
-------------------------
* So can anyone who downloads this rip off a bank?
Yes and no. You still need to spend some time pulling together all the resources provided here, and most importantly, you need someone on the inside at the bank.
* Who could rip off a bank then?
First off, you need access to a live IBM 4758 i.e. one that protects real key material, in a real bank. Because of the access permissions required, this sort of attack requires you to be a bank manager or security officer that plays a part in manual key entry into the device. In practice there might be about three or four people in the bank with the relevant access privileges. If your insider is not one of these people, there are plenty of ways you can go about stealing one of their passwords.
-------------------------
--ravi