Message from the Executive Director

Another year is almost over.  On behalf of the Board I would like to thank all those who have worked so hard to provide information, time and resources to help us to meet our targets and objectives.  Some of the highlights are as follows:

EAST National Members - badgeWe held National Member meetings in Stockholm in February (our 38th Meeting co-hosted by Bankomat AB and the Pan-Nordic Card Association), in The Hague in June (our 39th Meeting hosted by Europol) and in Bucharest in October (our 40th Meeting hosted by the Romanian Banking Association – ARB).  In January The Polish Bank Association (ZBP) joined EAST as the new National Member for Poland, taking over from Bank Zachodni WBK.
The EAST Expert Group on ATM Fraud - Logo

The EAST Expert Group on ATM Fraud (EGAF), chaired by Otto de Jong, held three meetings in January, May and September, all hosted by ING in Amsterdam.  EGAF members assisted Europol to translate the co-produced document ‘Guidance & recommendations regarding logical attacks on ATMs’ into German, Italian and Spanish.

The EAST Expert Group on ATM Physical Attacks - LogoThe EAST Expert Group on ATM Physical Attacks (EGAP), chaired by Graham Mott, held two meetings in March and September, both hosted by the LINK Scheme in London.  In February EGAP published a document entitled ‘ATM Physical Security Guidelines’ and in October a document with lists of the Manufacturers of ATM Protective devices.

The EAST Payments Task Force (EPTF), chaired by Rui Carvalho, continues to come together.  EAST has expanded its remit beyond ATMs to include all terminal types and the EAST focus is increasingly moving to Card Not Present (CNP) fraud issues which continue to rise.  A series of teleconferences have been held and the first face-to-face meeting is planned for 2017.

In March EAST supported Europol and represented the private sector at the Second Strategic Meeting on Payment Card Fraud (PCF) in Kuala Lumpur, Malaysia.  I participated in this two day meeting which was co-organised with ASEANAPOL, with the cooperation of INTERPOL and the support of the Romanian National Police and the Royal Malaysian Police.

In May EAST joined forces with the Latin American Association of Operators Electronic Funds Transfer and Information Services (ATEFI) in order to further strengthen cross border cooperation in combating all types of payment crime including payment card fraud, hi-tech crime and ATM cyber and physical attacks.

In June Úna Dillon presented at the 2nd Europol Training Course on Payment Card Fraud Forensics and Investigations, which was held at the National Spanish Police Academy, Ávila, Spain, and at the 37th member meeting of the European Association of Payment Service Providers for Merchants (EPSM), which was held in Dublin, Ireland.

In August Rui Carvalho presented at the SAS Fraud & Security Intelligence Customer Connect event held in the USA at the SAS World Headquarters in Cary, North Carolina.    .

In December I presented on behalf of the private sector at the Third Strategic Meeting on Payment Card Fraud (PCF) organised by Europol in Bangkok, Thailand.  The event was co-organised with ASEANAPOL and INTERPOL with the support of the Romanian National Police and the Royal Thai Police, and was hosted by the Electronic Transactions Development Agency (ETDA), and the Ministry of Digital Economy and Society.

EAST continues to keep abreast of the latest fraud trends and crime information, publishing our European ATM Crime Reports and European Fraud Updates.  Our thanks go out to all the people and organisations that have shared information for the above, and for EAST ATM Fraud Alerts (49 sent out this year to date), and EAST ATM Physical Attack Alerts (3 sent out this year to date).

EAST Associate Members - badgeEAST Associate Membership continues to grow  both numerically and geographically.  We currently have 168 Associate Member organisations from 51 countries and territories. This membership category is open for worldwide application to all Banks, Law Enforcement (free membership available), and other approved ATM Stakeholder organisations

Lastly, registration is now open for our third Financial Crime and Security (FCS) Forum, EAST FCS 2017, which will be held on 8th/9th June 2017 in The Hague.  This event has an exciting new format which will include breakout sessions hosted by both EGAF and EGAP.  As I write early-bird registration discounts are still available.  It would be wonderful to meet you there.

On behalf of EAST, I would like to wish all readers a wonderful festive break and a very happy and fulfilling New Year.

Kind regards

Lachlan

Third Strategic Meeting on Payment Card Fraud

3rd Strategic Meeting on Payment Card Fraud

EAST presented at the Third Strategic Meeting on Payment Card Fraud (PCF) at the Electronic Transactions Development Agency (ETDA) in Bangkok, Thailand.

This event, which was organised by Europol’s European Cybercrime Centre (EC3) on 13-14 December 2016, provided the law enforcement community with a comprehensive overview of payment card issues such as compromising payment card data, skimming, ATM cashing out, e-commerce and airline frauds. The event, which was co-organised with ASEANAPOL and INTERPOL with the support of the Romanian National Police and the Royal Thai Police, was hosted by the ETDA (public organisation), and the Ministry of Digital Economy and Society.

Thirty law enforcement officers from four EU Member States (Austria, France, Greece, and Romania) and their ASEAN counterparts (Brunei, Cambodia, Indonesia, Malaysia, Myanmar, Philippines, Singapore, and Thailand) participated in the two-day meeting. The private sector was represented by EAST, the Bank of Thailand, representatives from the Thai commercial banks and LiquidNexxus. The ThaiCERT – ETDA facilitated cooperation between the law enforcement community and the Computer Emergency Response Teams (CERTs).

EAST Executive Director Lachlan Gunn gave an overview of the European ATM Fraud situation and highlighted the issue of losses in the ASEAN region faced by European card issuers.

3rd Strategic PCF MeetingThe aim of the event was to discuss operational achievements in the area of combating cyber fraud and to agree on the steps to follow with regard to security of non-cash means of payment. It focused on the exchange of expertise in the area of prevention and combating ATM/POS fraud, data compromising, ATM malware, and eCommerce fraud. A specific action plan concerning further cross-regional cooperation between European and Asian law enforcement was devised, following recent successful operations between the two parties.

As a result of discussions at the event, and to strengthen inter-regional industry communication to combat terminal and payment security, EAST is in follow up communication with the banking sectors in Indonesia and Thailand.

In March 2016 EAST supported the Second Strategic Meeting on Payment Card Fraud which was held at the Royal Malaysian Police College in Kuala Lumpur, Malaysia.  The meeting was hosted by Europol, INTERPOL and ASEANOPOL with the financial support of the Romanian authorities.

In November 2015 EAST supported the First Strategic Meeting on Payment Card Fraud which was held in the INTERPOL Global Complex for Innovation (IGCI) and was co-hosted by Europol and INTERPOL with the financial support of the Romanian authorities.

In October 2015 EAST participated in a two-day meeting in Bogota (Colombia) to discuss payment card fraud overseas and money withdrawals in Latin America.

Second Strategic Meeting on Payment Card Fraud

Second Strategic Meeting on Payment Card FraudEAST represented the private sector at the Second Strategic Meeting on Payment Card Fraud (PCF) in Kuala Lumpur, Malaysia.

This event which was organised by Europol’s European Cybercrime Centre (EC3) on 22-23 March 2016, provided the law enforcement community with a comprehensive overview of the ATM fraud and its migration to Asia.  The event was co-organised with ASEANAPOL, with the cooperation of INTERPOL and the support of the Romanian National Police and the Royal Malaysian Police.

This two-day meeting brought together 25 law enforcement officers from EU Member States (Bulgaria, Germany, Greece, Romania and the UK) with their counterparts from the ASEANAPOL community (including Brunei, Cambodia, Indonesia, Malaysia, Myanmar, Philippines, Singapore, Thailand and Vietnam) to discuss cooperation in preventing and combating this type of crime.

Opening Ceremony 2EAST Executive Director Lachlan Gunn gave an overview of the European ATM Fraud situation and the problem caused by increasing losses in the ASEAN region.

The aim of the event was to increase awareness among experts about all types of non-cash means of payment, including card skimming, ATM malware, internet fraud and eCommerce fraud.  New and unreported modus operandi recently detected by different investigative units were shared between experts and cases involving European criminals active in Asia were discussed,  resulting in the elaboration of operational plans for coordinated actions in a close future.  

In November 2015 EAST supported the First Strategic Meeting on Payment Card Fraud which was held in the INTERPOL Global Complex for Innovation (IGCI) and was co-hosted by Europol and INTERPOL with the financial support of the Romanian authorities.

In October 2015 EAST participated in a two-day meeting in Bogota (Colombia) to discuss payment card fraud overseas and money withdrawals in Latin America.

 

 

International Criminal Group responsible for ATM Malware attacks taken down

Europol Jan 16 CybercrimeThe Romanian National Police and the Directorate for Investigating Organised Crimes and Terrorism (DIICOT), assisted by Europol and Eurojust as well as a number of European Law Enforcement authorities, disrupted an international criminal group responsible for ATM malware attacks.

This operation, one of the first in Europe against this kind of threat, resulted in multiple house searches in Romania and the Republic of Moldova and the final arrest of 8 individuals. The criminals used Tyupkin ATM malware which allowed the attackers to manipulate ATMs across Europe and illegally empty ATM cash cassettes.

The criminal group, composed of Romanian and Moldovan nationals, was involved in large scale ATM “Jackpotting”, causing substantial losses across Europe to the ATM industry.  ATM “Jackpotting” refers to the use of a Trojan horse, physically launched via an executable file in order to target an ATM, thus allowing the attackers to empty the ATM cash cassettes via direct manipulation, using the ATM PIN pad to submit commands to the Trojan.

The criminal group, composed of Romanian and Moldovan nationals, was involved in large scale ATM “Jackpotting”, causing substantial losses across Europe to the ATM industry.  ATM “Jackpotting” refers to the use of a Trojan horse, physically launched via an executable file in order to target an ATM, thus allowing the attackers to empty the ATM cash cassettes via direct manipulation, using the ATM PIN pad to submit commands to the Trojan.

Europol’s European Cybercrime Centre (EC3) supported police forces across Europe in their efforts to identify the suspects by hosting a number of international operational meetings and analysing intelligence. This joint international effort follows on a previous successful action against the threat posed by this type of malware.  For more information visit the EC3 Website.

Europol malware guidelinesEC3 recognises the severity of the threat presented by ATM logical and malware attacks and has prepared security guidelines regarding this new cyber threat to ATMs. The production of this document was coordinated by EAST, and is the first of its kind.

The guidance and recommendations regarding logical attacks on ATMs, which also covers malware attacks, is an excellent example of a coordinated central response from both Law Enforcement and the industry to fighting ATM malware threats in an effort to respond much more quickly and effectively.

These guidelines are available to Law Enforcement through Europol channels and to EAST Members (National and Associate).