Entries with tag atm security.

SMS Messaging Allows Crooks to Cash Out at ATMs

Security experts have found a short message service (SMS)-based malware attack that lets hackers force ATMs to give them cash. The attack uses a smartphone connected via a USB port to the computer that manages an infected ATM. Security vendor Symantec says the Backdoor.Ploutus malware has been used in Mexico and is spreading to English-speaking countries. A bigger problem, according to Symantec researchers, is that 95 percent of ATMs still use Windows XP, which Microsoft will stop supporting on 8 April 2014. This will make these ATMs a target for many types of attacks. (SlashDot)(ZD Net)(TechWeek Europe)

Hacker Network Steals Millions from ATMs

A sophisticated, global hacking network committed a series of thefts from ATMs in two dozen different countries -- including the United States, Japan, Russia, Romania, Egypt, Colombia, Britain, Sri Lanka, and Canada -- that netted the criminals $45 million. Officials arrested seven people in the US in connection with the thefts, which a dozen law-enforcement agencies worldwide have been investigating. Law-enforcement officials said the network’s leaders deployed operatives operating in cells in 27 countries, including this group in the US. According to authorities, the hackers infiltrated the databases of two Middle Eastern banks. They then reportedly eliminated withdrawal limits on prepaid debit cards and created passwords for the accounts. They then allegedly loaded the stolen account information onto plastic cards—including even old hotel key cards or expired credit cards—with a magnetic stripe. The hackers then reportedly coordinated the use of these cards with the different cells or groups of “cashers” they set up to quickly withdraw funds from various ATMs. Those cells retrieving the cash took their cut, laundered the money, and sent it in the form of goods or cash to the network’s leaders. In the first operation, the hackers took $5 million. In the second operation, officials claim that within 10 hours, the hackers took $40 million in a series of 36,000 transactions. They made 40,500 withdrawals overall in the two different operations. Security experts say the problem is that many banks and merchants in the United States use cards with magnetic strips rather than those with chips that are difficult to duplicate. Investigators say the suspects from the US cell are US citizens originally from the Dominican Republic living in Yonkers, New York, and face charges of conspiracy and money laundering after allegedly stealing $2.8 million. (CNBC)(The Associated Press @ The Telegraph)(Reuters @ NBCNews)(The New York Times -- 1) (The New York Times -- 2)(The Los Angeles Times)

Showing 2 results.