EUVD-2020-2587

Malware in sbrugna...

EUVD-2017-16006

Malware in sbrugna...

EUVD-2020-29891

Malware in sbrugna...

Using Machine Learning to Guess PINs from Video

Researchers trained a machine-learning system on videos of people typing their PINs into ATMs: By using three tries, which is typically the maximum allowed number of attempts before the card is withheld, the researchers reconstructed the correct sequence for 5-digit PINs 30% of the time, and...

UVI-2021-1001462 atm: nicstar: Fix possible use-after-free in nicstar_cleanup()

atm: nicstar: Fix possible use-after-free in nicstarcleanup This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.276 by commit...

CVE-2020-9062

Diebold Nixdorf ProCash 2100xe USB ATMs (Wincor Probase 1.1.30) are affected by CVE-2020-9062. The CCDM–host communication lacks encryption, authentication, and integrity verification, enabling a physically proximate attacker to intercept/modify deposit messages (e.g., amount/value) and commit de...

CVE-2020-10126

CVE-2020-10126 concerns NCR SelfServ ATMs running APTRA XFS 05.01.00 . The issue is that the update process during boot does not validate the signature of CAB archives on removable media, causing arbitrary code execution with SYSTEM privileges when updating the BNA (bunch note acceptor). An attac...

ATM Hackers Have Picked Up Some Clever New Tricks

So-called jackpotting attacks have gotten increasingly sophisticated—while cash machines have stayed pretty much the same...

10 years of virtual dynamite: A high-level retrospective of ATM malware

Executive summary It has been 10 years since the discovery of Skimer, first malware specifically designed to attack automated teller machines ATMs. At the time, the learning curve for understanding its functionality was rather steep and analysis required specific knowledge of a manufacturer's ATM...

A New Breed of ATM Hackers Gets in Through a Bank’s Network

Innovations in digital payment system attack methods mean the rash of heists isn’t over...

ATM Hacking Has Gotten So Easy, the Malware's a Game

A strain of ATM malware called WinPot turns the act of cashing out into something like a slot machine...

ATM Jackpotting Malware Hones Its Heist Tools

The WinPot ATM jackpotting malware is evolving, as its authors look to solve the obstacles that get in their way. The latest is an effort to help ATM hackers, a.k.a. jackpotters, better target their efforts in order to steal more cash in a lesser amount of time. Thieves infect ATMs through physic...

Collaborating with Law Enforcement to Tackle the Scourge of ATM Attacks

At Trend Micro, we’ve always been keen to collaborate with law enforcement. While we do our best to protect our customers from the latest threats, it’s only with concerted cross-border police action against the perpetrators of these crimes that we can hope to swing the pendulum back in our favor...

Cyber-Attacks: How to Stop a Multibillion-Dollar Problem

By Ed Cabrera, Chief Cybersecurity Officer for Trend Micro and Martin Bally, Vice President & Chief Security Officer for Diebold Nixdorf ? Where there’s money, there has always been crime. Traditional bank robbery and physical assaults on ATMs are still a challenge, and now a new breed of...

Ploutus.D Malware Variant Used in U.S.-based ATM Jackpotting Attacks

The United States Secret Service issued a warning on Friday to financial institutions citing “credible information” about “planned” attacks against U.S. cash machines using malware that can quickly drain ATM machines dry of cash. The warning came a day after ATM maker Diebold Nixdorf also warned...

Anti-Skimmer Detector for Skimmer Scammers

Crooks who make and deploy ATM skimmers are constantly engaged in a cat-and-mouse game with financial institutions, which deploy a variety of technological measures designed to defeat skimming devices. The latest innovation aimed at tipping the scales in favor of skimmer thieves is a small, batte...

ATM malware is being sold on Darknet market

Disclaimer and warning ATM systems appear to be very secure, but the money can be accessed fairly easily if you know what you are doing. Criminals are exploiting hardware and software vulnerabilities to interact with ATMs, meaning they need to be made more secure. This can be achieved with the he...

ATMii: a small but effective ATM robber

While some criminals blow up ATMs to steal cash, others use less destructive methods, such as infecting the ATM with malware and then stealing the money. We have written about this phenomenon extensively in the past and today we can add another family of malware to the list - Backdoor.Win32.ATMii...

Remote Malware Attacks on ATMs

This report discusses the new trend of remote malware attacks against ATMs...

Attack The Machines: The lucrative business of ATM malware

Trend Micro and Europol’s European Cybercrime Centre EC3 today released a publicly available report on the ATM malware landscape. This builds on the 2016 report that was privately released to financial institutions and law enforcement agencies globally. The report digs into the depth and breadth ...