EAST FCS 2015 highlights emerging threats to the ATM Channel

malicious softwareOver the last few years there has been a spike in malicious software, capable of infecting and jackpotting ATMs, shifting the focus away from innovative, high-tech skimming devices and targeting a rapidly ageing ATM infrastructure. From Malware such as Plotous (originating in Mexico) to Tyupkin, attacks are evolving and growing both in sophistication and frequency.

EAST ATM Crime Report 2014In a European ATM Crime Report covering H1 2014 EAST reported an estimated 20 incidents of ATM Malware. These were ‘cash out’ or ‘jackpotting’ attacks and all occurred on the same ATM type from a single ATM deployer in one country.  The report stated that, while many ATM Malware attacks have been seen over the past few years in Russia, Ukraine and parts of Latin America, this was the first time that such attacks were reported in Western Europe.

In a European Crime Report covering the full year 2014 EAST reported 51 such incidents, with related losses of €1.23 million.

east thumbThe EAST Financial Crime and Security Forum (EAST FCS 2015), that will be held in The Hague on 11th and 12th June 2015, will include strategic and technical presentations about this emerging problem as follows:

ATM Jackpotting and Cyber-Skimming – an Update from Ukraine will highlight payment fraud issues identified in Ukraine and neighbouring countries, trends in skimming and recent developments in Jackpotting attacks

ATM Compromise with and without Whitelisting A demonstration to show how a Windows ATM platform can be compromised through malware infection

Pen-testing – Current and Future Exploits in ATM Networks  A Case Study on work carried out to secure a national ATM Network

ATM Jackpotting and Cyber-Skimming – an Update from Ukraine

cybercrimeThe use of malware for ATM ‘cash out’ or ‘jackpotting’ attacks appears to be on the increase globally. In a European ATM Crime Report covering the full year 2014, EAST reported 51 such incidents, with related losses of €1.23 million. EAST defines such attacks as ‘Malware that takes control of the ATM cash dispense function, thereby allowing the criminals to take out cash’.

EMA LogoAt EAST FCS 2015 Olesya Danylchenko, Deputy Director of the Ukrainian Interbank Payment Systems Members Association (ЕМА), will highlight payment fraud issues identified in Ukraine and neighbouring countries, trends in skimming and recent developments in Jackpotting attacks.

About Olesya Danylchenko

Olesya DanylchenkoOlesya is Head of Payment Instruments and Credits Security Forum and administrator of the interbank anti-fraud exchange-online system at EMA.
Prior to joining EMA, she was Head of the Payment Cards Security Department of the Banking Security Department at PJC Ukrsotsbank (Member of Unicredit Group) for 10 years. She was a Software Engineer and fraud monitoring system manager at the Interbank Processing Center Topaz, National Bank of Ukraine.

Book soon to ensure you don’t miss your opportunity to attend the EAST Financial Crime and Security (FCS) Forum 2015. Places are limited and registration priority will be given to EAST Members, National and Associate