It is possible to remotely hack ATMs by taking advantage of a number of vulnerabilities that have been found in the ScrutisWeb ATM fleet monitoring software developed by the firm.Members of the Synack Red Team were the ones to uncover the vulnerabilities in the system, and the vendor addressed them in July 2023 with the […]
General Bytes, a leading producer of cryptocurrency automated teller machines (ATMs), was the victim of a security breach that resulted in the loss of more than $1.5 million in Bitcoin. General Bytes originally reported the event on their official Twitter account. According to the business, the attackers exploited a vulnerability in the master service interface […]
A new ATM malware strain dubbed FiXS has been observed targeting Mexican banks since the start of February 2023. “The ATM malware is hidden inside another not-malicious-looking program,” Latin American cybersecurity firm Metabase Q said in a report shared with The Hacker News. Besides requiring interaction via an external keyboard, the Windows-based ATM malware is […]
A new Android spyware called RatMilad has been discovered by researchers at the security company Zimperium Labs. There have been observations of this spyware targeting enterprise mobile devices in the Middle East with the purpose of spying on and stealing user data. As a result of this intrusion, private corporate systems can be accessed, blackmailed, […]
A novel Android malware called RatMilad has been observed targeting a Middle Eastern enterprise mobile device by concealing itself as a VPN and phone number spoofing app. The mobile trojan functions as advanced spyware with capabilities that receives and executes commands to collect and exfiltrate a wide variety of data from the infected mobile endpoint, […]
A financially motivated threat actor has been observed deploying a previously unknown rootkit targeting Oracle Solaris systems with the goal of compromising Automatic Teller Machine (ATM) switching networks and carrying out unauthorized cash withdrawals at different banks using fraudulent cards. Threat intelligence and incident response firm Mandiant is tracking the cluster under the moniker UNC2891, […]
This has been a complex year for multiple banks in Switzerland, as criminal groups have experimented with all sorts of methods to keep cashing out ATMs across the country, in a practice popularly known as jackpotting. Although the main jackpotting methods include the use of malware and complex hacking tools, the latest wave of attacks […]
After several days of uncertainty and confirmed attacks, the Apache Software Foundation has finally released an update to address CVE-2021-44228, the zero-day vulnerability that caused problems for thousands of online platforms using the Log4j log library. The vulnerability, also known as Log4Shell, can be exploited by forcing Java applications and servers to register a specific […]
The Delhi police began investigating some allegations related to three huge ATM transactions, which exceed millions of rupees. The whistleblowers mentioned that the transactions were carried out on three different days and in three different locations by using hacking tools. For the investigation of this jackpotting campaign, the whistleblowers delivered images captured at the ATMs […]
A recent research published by Positive Technologies points to the discovery of two vulnerabilities in Wincor Cineo ATMs, developed by the renowned ATM manufacturer Diebold Nixdorf, established in the U.S. According to the report, successful exploitation of the vulnerabilities would allow attackers to make the machine throw cash arbitrarily using only one command. The researchers […]
The incident took place while the suspect was recording himself for a tutorial on how to bomb ATM (Automatic Teller Machines). In April 2021, the Dutch and German law enforcement authorities joined hands to create a joint investigation team (JIT) to take down an organized crime group known for targeting Automatic Teller Machines or ATMs. […]
A China-based group of threat actors is deploying an attack campaign against critical infrastructure in South Asia to compromise industrial control systems and extract sensitive information. Unfortunately, attacking critical infrastructure has become a common practice for organizations in these territories. A Symantec report notes that its threat analysis division detected multiple attacks launched by a […]
In a press release, Europol announced the arrest of two Belarusian citizens identified as the main responsible for a jackpotting campaign at ATMs in Europe, which allowed them to steal around 230 thousand Euros. These cybercriminals gained access to ATM cables by drilling small holes in them to connect directly to the attacking machine in […]
In early 2021 it was reported that a malicious hacker managed to gain access to the computer systems of a water treatment plant in California, USA, arbitrarily removing some of the programs used for his daily tasks. The cybercriminal allegedly accessed a staff member’s TeamViewer account, according to the California Regional Intelligence Center. The report […]
According to a recent cybersecurity report, a hacking group specializing in ATM compromise in India has struck again, managing to extract the equivalent of up to $300,000 USD through the abuse of a weakness using the popular Man-in-The-Middle (MiTM) attack variant. The information was confirmed by a Kolkata police spokesman, who even added that the […]
The U.S. Department of Justice (DOJ) announced that Kais Mohammad, also known as “Superman29” has been sentenced to two years in prison for his involvement as an operator of an illegal cryptocurrency platform on which transactions of up to $25 million USD would have been made. The 37-year-old Orange County resident provided his services in […]
Attacks on ATMs on the street have evolved in great steps, leaving behind the methods of physical engagement of these machines to reach attacks using technology and advanced hacking capabilities. More recent analyses suggest that the most sophisticated method is currently known as “Black Box”, based on the use of a microcomputer with a single […]
A team of digital forensics specialists has reported the finding of two major zero-day vulnerabilities in some ATM machines widely used in the US, among other territories. If exploited, these flaws could allow a hacker to steal cash and extract sensitive information from users. Experts Trey Keown and Brenda So from security firm Red Balloon […]
Network security specialists report that the Nuclear Power Corporation of India (NPCIL), a government-controlled nuclear company, has been the victim of a serious malware infection. Although Indian officials did not explicitly mention the affected facility, they did specify that the infected equipment belongs to one of the administrative areas of the nuclear plant, so it […]
Researchers discovered a new track of ATM jackpotting attack through infamous ATM malware called “Cutlet Maker” which is now rapidly growing up around the world. Cutlet Maker malware specially designed to spit the cash from an ATM machine without using a debit card and the malware initially attack ATM ‘s in Germany in 2017. In […]
The US Department of Justice (DOJ) has dealt a severe blow to cybercrime. Vulnerability testing experts reported that American authorities have arrested 18 hackers from various countries allegedly involved in multiple financial frauds, stealing tens of millions of dollars from both banking and users. The DOJ mentions that these cyberciminals are involved in the theft […]