later, i found a whole slew of vulnerabilities. >> so you tell me it took you a couple years to figure this out. >> it took a couple years in the off hours, though. i didn't spend all my time on it. >> all right. well, tell me now, for people out there listening and who could possibly be worried and even banks out there, how vulnerable are a lot of these atms out there? >> so we were really careful when we gave the demonstration to make sure that the vendors had mitigation remediation in place before we went up and did it. the goal was certainly not to give a cookbook recipe for everyone out there be able to go out there and loot atms. so we made sure the vendors had fixes in place, and directionally -- distributing those at the moment. >> what were you able to get this atm to do, literally spit out money? and were you also able to get some of these atms and hacking into them, also able to get people's personal information?