Diebold Nixdorf — 3 prefixes (MA-L)

Diebold Nixdorf holds three MA-L blocks registered as "Diebold Nixdorf": 00:03:51, 00:03:56, and 3C:BD:14. The registry addresses straddle the company's dual-headquarters structure — 00:03:51 lists 5995 Mayfair Road, North Canton, Ohio (the legacy Diebold side), while 00:03:56 and 3C:BD:14 both list Wohlrabedamm 31, Berlin, Germany (the legacy Wincor Nixdorf side). The company was formed by the 2016 merger of Diebold Incorporated (US, founded 1859) and Wincor Nixdorf AG (Germany), and is one of the two dominant suppliers of ATMs and self-service banking hardware worldwide, alongside retail self-checkout kiosks, point-of-sale terminals, and currency-handling systems. For network triage this is a high-signal OUI: an address in one of these blocks almost always belongs to financial- or retail-sector transaction hardware (an ATM, cash recycler, self-checkout, or POS terminal) rather than a general-purpose endpoint, and such devices sit on segmented payment networks where their presence is meaningful for asset inventory and PCI-scope reasoning. Note that documented vulnerabilities in Diebold Nixdorf ATM hardware (jackpotting, deposit-amount forgery) generally require physical access to internal components rather than being remotely exploitable across the MAC-layer network interface alone — the OUI identifies the device class but does not by itself indicate remote exposure.

IEEE assignment

3 prefixes → Diebold Nixdorf; one registered North Canton, OH, US (00:03:51) and two registered Berlin, DE (00:03:56, 3C:BD:14) [Confirmed] — IEEE MA-L (enrichment/registries/oui.csv lines 279, 31931, 38722)

Registry / block size

MA-L (24-bit OUI); 3 blocks (~50.3M addresses). No MA-M (mam.csv) or MA-S (oui36.csv) assignments. [Confirmed] — IEEE MA-L. NOTE: IEEE's public OUI data publishes NO assignment/registration date (oui.csv columns are only Registry, Assignment, Organization Name, Organization Address); any "date registered" on third-party tools (e.g. maclookup.app shows 2000-11-09 for 00:03:51/00:03:56 and 2024-12-02 for 3C:BD:14) is a database artifact, not an IEEE fact.

HQ / country

dual headquarters — North Canton, Ohio, US and Paderborn, Germany. Registry addresses on record: 5995 Mayfair Road, North Canton, OH 44720, US (00:03:51); Wohlrabedamm 31, Berlin 13629, DE (00:03:56, 3C:BD:14). [Confirmed registry addresses; dual-HQ Confirmed] — IEEE MA-L / en.wikipedia.org/wiki/Diebold_Nixdorf

Company status

active; formed by the 2016 merger (finalized Aug 2016) of Diebold Incorporated (US, founded 1859) and Wincor Nixdorf AG (Germany) [Confirmed] — en.wikipedia.org/wiki/Diebold_Nixdorf

Device types

ATMs and cash recyclers; retail self-checkout kiosks and POS terminals; currency-processing systems; physical security hardware [Confirmed] — dieboldnixdorf.com, en.wikipedia.org/wiki/Diebold_Nixdorf

Notable products

ProCash and Cineo ATM families (Cineo via Wincor lineage); EASY retail self-checkout systems

Verified prefixes (all MA-L, Diebold Nixdorf)

00:03:51, 00:03:56, 3C:BD:14 [Confirmed] — IEEE MA-L (oui.csv)

Industry context

financial services (banking, ATM networks) and retail (self-service checkout). A top-two global ATM supplier; operates in ~130 countries. [Confirmed] — en.wikipedia.org/wiki/Diebold_Nixdorf

Security note

documented ATM-hardware vulnerabilities require physical/internal access, not remote MAC-layer exploitation. CVE-2020-9062 (CERT VU#221785): ProCash 2100xe USB ATM — unencrypted, unauthenticated internal USB between the deposit module (CCDM) and host enables deposit-amount forgery (physical access required). CVE-2018-9099 / CVE-2018-9100: Wincor Cineo ATMs (CMD-V5 / RM3 dispensers) — firmware-key extraction and RSA-signature bypass enabled jackpotting via physical access (patched 2019). Separately, a 2020 Clop ransomware incident affected corporate IT systems (not the ATM fleet). [Confirmed] — kb.cert.org/vuls/id/221785, securityweek.com, securityaffairs.com

Related vendors

predecessor entities Diebold Incorporated and Wincor Nixdorf AG (both now consolidated under Diebold Nixdorf); peer/competitor NCR in the ATM and self-service space

Analyst note

A Diebold Nixdorf OUI is a strong signal of financial- or retail-sector transaction hardware (ATM, cash recycler, self-checkout, POS) on a segmented payment network — useful for asset inventory and PCI-scope reasoning. Known hardware CVEs require physical access, so the OUI flags device class, not remote exposure by itself.