Cyber Attack

Hackers Are Using New Malware to Make ATMs Spit Out Cash

Sharing is caring!


A new cyber attack is in the news, According to Russian cyber security firm Group-IB, cyber attackers have remotely infected ATMs with malware in more than dozen countries across Europe , which forces ATMs machines to spit out cash.

This procces which is used for attack known as touchless jackpotting . The ‘touchless jackpotting’ technique employed does not involve any physical manipulations of ATMs. This attack can be suceesfully excuted within 10 minute.

Two of the biggest cash machine manufacturers, Diebold Nixdorf and NCR Corp, have confirmed that they are aware of the threat and already have been working with customers to mitigate the threat.

Though the security researchers haven’t named the actual banks affected, they claim attacks like these have taken place in the UK, Russia, Spain, Poland, the Netherlands, Romania, Estonia, Armenia, Bulgaria and others.

The cyber criminals have been attacking cash machines for at least five years, the early campaigns mostly involved small numbers of ATMs because hackers needed to have physical access to cash out machines.

According to Reuters report, Diebold Nixdorf and NCR both said they had provided banks with information on how to thwart the new types of attacks.

“We have been working actively with customers, including those who have been impacted, as well as developing proactive security solutions and strategies to help prevent and minimize the impact of these attacks,” said Owen Wild, NCR’s global marketing director for enterprise fraud and security.

The disclosure of the new campaign comes months after two large ATM hacks, wherein hackers stole $2.5 Million from Taiwan’s First Bank and $350,000 from Thailand’s state-owned Government Savings Bank.

Group IB believed the attacks across Europe were conducted by a single criminal group which it dubbed Cobalt. Group IB believes that Cobalt is linked to a well-known cyber crime gang dubbed Buhtrap, which stole 1.8 billion rubles ($28 million) from Russian banks from August 2015 to January 2016, because the two groups use similar tools and techniques.

Join The Discussion