Vulnerabilities have been found in CompuSafe Galileo safes that would allow a rogue employee, or anyone with physical access to a company, to demand that the doors be opened and hand over their cash. Retailers, restaurants and convenience stores use the safes made by the Brinks company.
A thief could also eliminate any evidence that the theft occurred by adjusting data in a back-end where the smart safe logs how much money is inside and who has accessed it.
The safes have an external USB port on the side of the touchscreens allowing technicians to troubleshoot and access a backup of the database, making it an easy entryway for robbers to take complete control of the devices.
Brinks has been notified about the vulnerabilities, however the issues have not yet been resolved.