ATM "jackpotting" hacks start targeting U.S. cash machines

Source: Xinhua| 2018-01-29 15:47:23|Editor: Lifang
Video PlayerClose

WASHINGTON, Jan. 29 (Xinhua) -- World's leading ATM makers have warned of "jackpotting" attacks against U.S. cash machines in the wake of the country's first confirmed hacks, according to a media report.

ATM jackpotting is a sophisticated hack that thieves gain physical access to the machine and, with the help of malware or specialized electronics, force ATMs to spit out huge volumes of cash.

NCR Corp., a leading ATM manufacturer, said Friday in a advisory sent to its customers that it had received reports about jackpotting attacks, also known as "logical attacks", against U.S. ATMs, but its equipment had not been affected in the recent attacks, reported security news website KrebsOnSecurity on Saturday.

"This represents the first confirmed cases of losses due to logical attacks in the U.S.," read the NCR alert. "This should be treated as a call to action to take appropriate steps to protect their ATMs against these forms of attack(s) and mitigate any consequences."

However, NCR did not identify any victims or the amount of money stolen.

Meanwhile, ATM maker Diebold Nixdorf said Friday in a separate alert that they were informed by U.S. authorities about potential jackpotting attacks moving from Mexico to the United States within the next days, reported KrebsOnSecurity.

A confidential U.S. Secret Service alert sent to banks said the hackers have been attacking stand-alone cash machines routinely located in pharmacies, big box retailers and drive-thru ATMs, it said.

"During previous attacks, fraudsters dressed as ATM technicians and attached a laptop computer with a mirror image of the ATMs operating system along with a mobile device to the targeted ATM," said the confidential alert.

Cyber criminals remotely attacked cash machines in more than a dozen countries across Europe in 2016, reported Reuters, citing statistics from Russian cyber security firm Group IB.

According to Kaspersky Lab, another Russian cybersecurity firm, outdated computer hardware and software are among the reasons for ATMs vulnerability to hacks.

"It is quite possible that no exceedingly 'hi-tech' efforts are needed" to hack an ATM, wrote the company in a blog post in 2016.

The vast majority of today's ATMs still use Windows XP operating system, whose developer Microsoft had dropped its support since early 2014, said the company.

To reduce the risk of attack on cash machines, Kaspersky Lab suggested measures including updating ATM's journaling file system and implementing authenticated dispensing and cryptographic protection.

Olga Kochetova, security expert at Kaspersky Lab's penetration testing department, noted that it is the longtime disbelief that cyber criminals are only interested in cyber attacks against Internet banking that causes banks and their customers huge financial losses.

"They are interested in these attacks, but also increasingly see the value in exploiting ATM vulnerabilities, because direct attacks against such devices significantly shortens their route to real money," she said in the blog post.

TOP STORIES
EDITOR’S CHOICE
MOST VIEWED
EXPLORE XINHUANET
010020070750000000000000011100001369336211