http://cryptome.org/pacc.htmHere's a summation of the link: These people from Cambridge had been brought up as expert witnesses in a "phantom ATM withdrawal" case against Citibank. The prosecution asked them if the machines were as secure as they were supposed to be. They checked, and discovered that "a bank insider could crack a cashpoint card's PIN number on an internal bank network in an average of fifteen tries. One employee could saunter off with seven thousand ATM PINs in half an hour, making an easy $2 million out of their lunchbreak."
This is not the sort of thing that Citibank would like widely known. They have therefore commenced legal shutupshutup proceedings.
Apparently, ATM machines are fairly vulnerable.