EPTF holds Sixth Meeting

EPTFThe Sixth Meeting of the EAST Payments Task Force (EPTF) took place on Wednesday 13th November 2019 at the Banking & Payments Federation Ireland (BPFI) in Dublin.

The EPTF is a specialist task force that discusses security issues affecting the payments industry and that gathers, collates and disseminates related information, trends and general statistics.

The meeting was chaired by Mr Rui Carvalho, EAST Development Director, and was attended by key representatives from Card Issuers, International Banks, Law Enforcement, Payment Processors and Solution Providers.

Presentations or updates were given by EuropolEVRY Norge AS, HSBCPLUSCARD Gmbh, and SIBS.  There was also a detailed discussion on fraud and payment crime reporting, with a focus on how EAST can help national representatives by creating an updated template for this.

The Group, which meets twice a year, adds value to the payments industry by using the unique and extensive EAST National Member platform and Associate Member network to provide information and outputs that are not currently available elsewhere.  EAST National Members represent 35 countries and outputs from the group are presented to National Member Meetings.  There are 213 EAST Associate Member Organisations from 53 countries and territories.

EAST Presents at second P3 CyberFraud Training

P3 CyberFraud TrainingEAST Development Director Rui Carvalho participated at the second P3 CyberFraud training. The event, which was organised by the European Cyber Crime and Fraud Investigators (ECCFI), ran from 5-7 November 2019 and took place in the Finlandia Hall in Helsinki. It was the second training session of the P3 Cyberfraud Project, which is funded by the ‘European Union Internal Security Fund – Police’.

ECCFI is a registered, non-profit association. In addition to supporting the P3 Cyberfraud Project, the purpose of ECCFI is to promote cyber security in Europe, especially secure payment methods. In addition to cyber security, the purpose is to assure online security by bringing together different authorities as well as the private sector security professionals.

EAST is an Associate Partner of ECCFI and the EAST Payments Task Force (EPTF), chaired by Rui Carvalho, has a specific focus in this area

60 arrested in connection with e-commerce fraud

e-commerce fraud

Advisory Group on Financial ServicesA joint law enforcement operation, coordinated by Europol’s European Cybercrime Centre (EC3) and  supported by 19 countries, led to the arrest of 60 people suspected of e-commerce fraud. The main aim of the 2019 e-Commerce Action (eComm 2019) is to target criminal networks suspected of online fraud through coordinated law enforcement action within the European Union, followed by an awareness-raising campaign.  The operation ran from 23 September to 4 October 2019.

E-commerce fraud includes illegal or false transactions made on online platforms, apps and services or over the internet: fraudsters simply use stolen card information to purchase goods on webshops.  The suspects arrested during the operation were responsible for almost 6,500 fraudulent transactions with compromised credit cards, with an estimated value exceeding €5 million.

Europol supported national competent authorities during the operations in their respective countries with analytical support and information exchange. In order to protect customers from fraudulent payments and assure a safe online environment, Europol also collaborated with banks, payment card schemes European retailers and logistics companies. The private sector supported the action cooperating with national law enforcement authorities, by reporting fraudulent activity. This collaboration between law enforcement and the private sector has proven beneficial and led to the development of best practices.

To protect consumers and provide them with more information, the Payment Service Directive 2 (PSD 2) came into effect in September 2019. One important aspect of the PSD 2 is described as Secure Customer Authentication (SCA), a secure process for customers when paying online.


It is always better to prevent a crime, rather than solve a crime. This operational action was followed by a prevention and awareness-raising campaign, #BuySafePaySafe. There are a number of guidance measures you can follow to avoid becoming a victim of fraud:

  • make sure the device you are using to make online purchases is properly configured and the internet connection is safe;
  • using a card is a safe method of payment online as long as you exercise the same care as in other shopping;
  • there are simple warning signs that can help you identify scams. If you are a victim of online fraud, report it to the police. If you bought the product with a credit or debit card, report it to your bank as well;
  • check your online banking service regularly. Notify your bank immediately if you see payments or withdrawals that you have not made yourself.​

Read more about safe online shopping on e-Commerce: tips and advice to avoid becoming a fraud victim. and watch the below video to see how making the wrong choice can be very costly.

The EAST Payments Task Force (EPTF) is focussed on security issues affecting the payments industry, such as e-commerce fraud.


EAST FCS ATM Physical Attacks Seminar 2019

ATM Physical Attacks

ATM Physical AttacksAn EAST FCS ATM Physical Attacks Seminar was held on 9th October 2019 in London, co-located with RBRs ATM & Cyber Security 2019 Conference. The interactive event followed the basic structure of work group meetings held by the EAST Expert Group on ATM & ATS Physical Attacks (EGAP). This group, which meets twice a year, provides a platform for law enforcement and private sector experts to come together and share attack information, trends and statistics in a structured manner.

ATM Physical AttacksThe event was chaired by Sarah Staff of SaferCash.  EAST Executive Director Lachlan Gunn gave an overview of EAST and EGAP, highlighting new definitions produced by the group, before presenting the latest ATM Physical Attack Statistics from the H1 2019 European Payment Terminal Crime Report.

Miguel-Angel Villanueva-Guijarro of Europol then gave a high level view of the ATM physical attack situation across Europe and how Europol is structured to handle cross-border cases.  This was followed by threat assessments from Europe and South Africa:

  • France – Guillaume Bourez – OCLDI
  • Netherlands – Marc Wosten – Dutch National Police
  • Spain – Daniel Zorzo Lopez – Guardia Civil
  • South Africa – Gregory Singh – SABRIC
  • United Kingdom – Neil Smyth – Metropolitan Police Service

These were followed by a presentation on banknote infrared (IR) recognition by David Milner of EURICPA and Niels Riedel of the ECB.  This covered, from the perspective of the ECB, the current position with regard to how banknote sorting machines will detect banknotes with IR markers, as well as a look at the future.

ATM Physical AttacksThe event concluded with a Question and Answer session chaired by Sarah Staff and with Daniel Zorzo Lopez, Miguel-Angel Villanueva-Guijarro, Marc Wosten, Gregory Singh and David Milner on the Panel.

Attendance at the regular EAST EGAP work group meetings is limited and this event enabled active participation and input from a much wider pool of expertise.

More information on the event can be found on the EAST Events Website

2019 EAST FCS ATM Physical Attack Seminar Sponsors




EAST FCS Terminal Fraud Seminar 2019

terminal fraud

An EAST FCS Terminal Fraud Seminar was held on 9th October 2019 in London, co-located with RBRs ATM & Cyber Security 2019 Conference. The interactive event followed the basic structure of work group meetings held by the EAST Expert Group on All Terminal Fraud (EGAF). This group, which meets three times a year, provides a platform for law enforcement and private sector experts to come together and share fraud information, trends and statistics in a structured manner.

terminal fraudAn introduction to EGAF by the Chair, Otto de Jong, was followed by a presentation by EAST Development Director Rui Carvalho, covering the latest EAST terminal fraud statistics from the H1 2019 European Payment Terminal Crime Report.  Tobias Wieloch of Europol then gave a high level view of the terminal fraud attack situation across Europe which was followed by threat assessments from around Europe:

  • NORTH – Nordics – Arnt Olav Rottereng – Evry
  • SOUTH – Italy – Veronica Borgogna – Bancomat SpA
  • EAST – Russia – Nikolai Dosh – Mastercard Members Association (MCMA)
  • WEST – UK – Ben Birtwistle – NatWest Bank Plc

terminal fraudThese were followed by an overview and demonstration of the Checkcard Software by Tobias Heckmann from the University of Applied Sciences in Bingen, Germany. This has been developed as an investigation tool to validate whether or not a smart card is genuine. The check is done off-line, either using software on a desktop or on an android phone.

terminal fraudThe event concluded with an update on logical security – Otto de Jong covered black box attacks and Terence Devereux of Diebold Nixdorf spoke about ATM malware attacks.

Attendance at the regular EAST EGAF work group meetings is limited and this event enabled active participation and input from a much wider pool of expertise.

More information on the event can be found on the EAST Events Website

ATM malware and logical attacks fall in Europe

EAST has just published a European Payment Terminal Crime Report covering the first six months of 2019 which reports that ATM malware and logical attacks continue to trend downwards.

ATM malware and logical attacks against ATMs were down 43% (from 61 to 35) and all bar one of the reported ‘jackpotting’ attacks are believed to have been unsuccessful. Malware was used for 3 of the attack attempts and the remainder were ‘black box’ attacks. Related losses were down 100% (from €0.25 million to €0.00 million), although a small loss (less than €1,000) was reported in one case.

EAST Executive Director Lachlan Gunn said, “This fall in logical and malware attacks is very good news and reflects the work that has been put into preventing such attacks by the industry and law enforcement. In January 2019, supported by our Expert Group on All Terminal Fraud (EGAF), Europol updated their ‘Guidance & recommendations regarding logical attacks on ATMs’, which was first published in 2015. These Guidelines, which have been widely shared with ATM deployers and law enforcement agencies, reinforce the recommendations made by the ATM vendors.”

Terminal related fraud attacks were up 59% (from 6,760 to 10,723 incidents). This increase was primarily due to an increase in transaction reversal fraud attacks (up from 2,292 to 5,649 incidents), while card skimming incidents fell to an all time low (down from 985 to 731 incidents). This downward trend reflects the success of EMV and that measures to counter skimming at terminals, along with geo-blocking, are working well in Europe.

Total losses of €124 million were reported, up 16% from the €107 million reported during the same period in 2018. This increase is primarily due to a rise in international losses due to card skimming (up from €87 million to €100 million), which indicates that EMV implementation is not yet complete globally with resultant risks for European cardholders. Losses due to transaction reversal fraud were up 135% (from €1.36 million to €3.2 million).

ATM related physical attacks were up 16% (from 2,046 to 2,376 incidents). Attacks due to ram raids and ATM burglary were up 3% (from 590 to 610 incidents) and ATM explosive attacks (including explosive gas and solid explosive attacks) were up 3% (from 490 to 503 incidents). Losses due to ATM related physical attacks were €11.4 million, a 25% decrease from the €15.1 million reported during the same period in 2018.

The average cash loss for a robbery is estimated at €15,140 per incident, the average cash loss per explosive or gas attack is €10,161 and the average cash loss for a ram raid or burglary attack is €9,632. These figures do not take into account collateral damage to equipment or buildings, which can be significant and often exceeds the value of the cash lost in successful attacks.

A summary of the report statistics under the main headings is in the table below.

The full Crime Report is available to EAST Members (National and Associate)

49th EAST Meeting hosted by LINK in London

The 49th EAST Meeting (National Members) was hosted by the LINK Scheme in London on 8th October 2019. National country crime updates were provided by 20 countries, and a global update by HSBC.  Topics covered included payment fraud and the continuing evolution of payment technology and related threats, terminal related fraud attacks, malware and logical attacks, and ATM related physical attacks.

The European Cybercrime Centre (EC3) at Europol gave a presentation on the ‘Genesis’ dark web marketplace where cyber-criminals are selling digital fingerprints (bots).  This was followed by a presentation from the INTERPOL Financial Crimes unit on ATM and payment crime.

The Gulf Cooperation Council Police (GCCPOL) then shared an update on payment and fraud isses seen by their 6 member countries. In recognition of their first attendance at an EAST Meeting, GCCPOL representative Major Mohammed Khalid Alabsi presented the current Chair of EAST, Ms Veronica Borgogna (BANCOMAT SpA), with a mementoe of the occasion.  EAST Executive Director Lachlan Gunn said: “We are delighted to be strengthening our relationship with the GCC and the Arab States of the Gulf, another step forward in enhancing the global value of our National Member platform.”

Presentations were also given by the EAST Expert Group on All Terminal Fraud (EGAF) and the EAST Expert Group on ATM and ATS Physical Attacks (EGAP).  An update was given by the EAST Payments Task Force (EPTF).

EAST Fraud Update 3-2019 will be produced later this month, based on the national country crime updates provided at the 49th EAST Meeting.  EAST Fraud Updates are available on the EAST Website to EAST Members.

European Police Chiefs focus on Serious and Organised Crime

Advisory Group on Financial ServicesAt the 2019 European Police Chiefs Convention (EPCC) the main focus was serious and organised crime and its manifestations and infiltration in society.  The event was held on 3-4 October 2019 at Europol in The Hague, and was attended by over 600 police chiefs and senior law enforcement representatives from 50 countries.

There was consensus that the increasingly cross-border nature of organised crime, often associated with violent acts among gangs, flourishing drug trafficking markets and related crimes such as money laundering and corruption pose a major challenge to society.

Serious and organised crime has been evolving over the last 20 years in terms of:

  • the number of criminal organisations;
  • modus operandi, adaptability, sophistication and interconnection;
  • use of technology;
  • and their ability to infiltrate infrastructures, public sector and exploit legislative loopholes.

Meanwhile, new psychoactive substances, record levels of drugs production globally, organised migrant smuggling and the development of online criminality have all had profound effects on the criminal landscape.

Coinciding with the 2019 EPCC, several important developments are at a crucial stage, creating a rare intersection of opportunities and challenges for the European law enforcement community:

  • rapid technological developments (e.g. encryption, 5G, big data, machine learning and cryptocurrencies) present both challenges and opportunities for criminal investigations;
  • record levels of illicit drug cultivation and trafficking, with the EU as a leading consumer market.

Europol and Finland’s Presidency of the Council of the EU concluded that a number of areas require particular attention. Among them are:

  • refocusing attention on serious and organised crime as a grave threat to the internal security of the EU;
  • the need to target the top-tier organised crime groups, developing further successful initiatives like the high-value target concept at Europol ;
  • greater attention to financial and economic crime and criminal asset seizures, making sure crime doesn’t pay; welcoming new developments like the European Financial and Economic Crime Centre (EFECC) at Europol, and the European Public Prosecutor’s Office (EPPO);
  • greater engagement between law enforcement and the private sector, at national and EU (Europol) level;
  • greater investment in crime prevention, requiring a multi-disciplinary approach involving government bodies, non-governmental organisations and the private sector;
  • need for a global EU strategy on organised crime, which might expand on the EU Policy Cycle for International Serious and Organised Crime; and sustainable funding and resources for cross-border crime-fighting, comprising both Europol and EU-level funding and capacity building mechanisms;
  • further development of EU policing solutions, such as Europol’s new decryption platform;
  • greater and more coordinated investment in innovation in the law enforcement community, potential via an innovation platform hosted by Europol.

Europol’s Executive Director Catherine De Bolle said: “Crime in the 21st century is highly international and organised, and for law enforcement it is no longer good enough to be reactive. We must strengthen our cooperation and engage in foresight activities to understand emerging challenges and formulate innovative countermeasures. Europol’s strategy 2020+ sets out our ambition to further establish Europol as an innovator in the European law enforcement community. The European Police Chiefs Convention shows that Europol has established itself as the EU criminal information hub. We will continue to enhance the value of our network by providing Member States with access to a growing number of partners and sources of information.”

Europol has organised the EPCC since 2010. This year this significant event had the highest ever turnout with 615 attendees. High-level representatives from all 28 EU Member States, 15 non-EU countries, agencies, and institutions of the EU (Eurojust, FRONTEX, OLAF, EUIPO), as well as international organisations attended the convention. Alongside the EPCC, two more major meetings were held at Europol: the EUROMED meeting and the European Customs DG meeting.

For more information and a related video visit the Europol website

EAST EGAF holds 19th Meeting in Amsterdam

EAST EGAFThe Nineteenth Meeting of the EAST Expert Group on All Terminal Fraud (EAST EGAF) took place on Wednesday 18th September 2019 at ING Domestic Bank in Amsterdam.

EAST EGAF is a regional expert group that focuses on regional and global payment terminal crime and fraud related issues, threats and counter-measures.

The meeting was chaired by Mr Otto de Jong and was attended by key representatives from Terminal Deployers, Terminal Vendors, Networks, Card Schemes, Security Equipment and Software Vendors, Law Enforcement and Forensic Analysts.

The Group, which meets three times a year in advance of each of the meetings of EAST National Members, enables in-depth and technical discussion to take place on Logical and Malware attacks, Card Skimming, Card Trapping, Cash Trapping and Transaction Reversal Fraud.

In addition EAST EGAF generates EAST Fraud Alerts for all EAST Members (National and Associate). In total 219 EAST Fraud Alerts have been issued, 18 to date in 2019.

EAST EGAF meetings are restricted to working group members and, to provide a wider platform for sharing/discussion, the Group is holding a half-day open seminar in London on 9th October 2019.  Registration for this is still open and more information can be found on the EAST Events website.

Terminal Fraud Update – EAST FCS Seminars 2019

Terminal Fraud

Act now to save your place for the Terminal Fraud Seminar that will be held by the EAST Expert Group on All Terminal Fraud (EGAF) on 9th October 2019.


This session will focus on logical attacks against ATMs. These can be split into two types – black box attacks and malware attacks.

Terminal FraudEAST EGAF Chair, Otto de Jong of ING Bank, will first present on black box attacks. These are a type of jackpotting attack. The criminals connect an unauthorised device (or black box) which sends dispense commands directly to the ATM cash dispenser in order to ‘Cash-Out’ the ATM. He will cover the latest developments for this type of attack methodology.

Terminal FraudThen Terence Devereux of Diebold Nixdorf will present an update on malware attacks. For these attacks the criminals use unauthorised software, or authorised software run in an unauthorised manner, on the ATM’s PC. These attacks are focussed on either jackpotting (most common), or card skimming, as follows:

  • Jackpotting: Targets control of the cash dispense function in order to ‘cash-out’ the ATM
  • Man-In-The-Middle (MitM): Targets communication between the ATM’s PC and the acquirer host system in order to falsify host responses and dispense cash without debiting the criminal’s account
  • SW-Skimming: Targets card and PIN data in order to create counterfeit cards for subsequent fraudulent transactions

This interactive event follows the basic structure of EAST EGAF Member meetings. Attendance at EAST EGAF meetings is limited, as it is a working group, and this event enables a wider participation and the opportunity for all attendees to engage with the Group and its organizers.

Terminal Fraud

The EAST FCS Seminars will be co-located with RBR’s ATM & Cyber Security 2019 event, although separate registration is required.

2019 EAST FCS ATM Physical Attack Seminar Sponsors





Additional sponsorship opportunities are still available