From The Brad Blog:
This idiotic company has had a photograph of the stupid key sitting on their own website's online store!
And somebody made a working key using this image!
But it gets worse. It seems this key can open ANY Diebold voting machine!!!
It seems Diebold cannot and do not want to do ANYTHING RIGHT!!!
A bit more after the jump..
It was revealed in the course of last summer's landmark virus hack of a Diebold touch-screen voting system at Princeton University that, incredibly, the company uses the same key to open every machine. It's also an easy key to buy at any office supply store since it's used for filing cabinets and hotel mini-bars! That is, if you're not a poll worker who already has one from the last time you worked on an election (anybody listening down there in San Diego?).
...
The shape of a key is like a password — it only provides security if you keep it secret from the bad guys.
...
Could an attacker create a working key from the [Diebold website] photograph? Ross [Kinard of SploitCast] decided to find out. Here’s what he did:
I bought three blank keys from Ace. Then a drill vise and three cabinet locks that used a different type of key from Lowes. I hoped that the spacing and depths on the cabinet locks’ keys would be similar to those on the voting machine key. With some files I had I then made three keys to look like the key in the picture.
Ross sent me his three homemade keys, and, amazingly, two of them can open the locks on the Diebold machine we used in our study!
Here is the rest of the story ...