how an inside-outside job steals 1.7 million $ from 17 ATM's with one textmessage

this happened in Asia

the techniques used are the following

* an insider gives the necessary information so they can locate the vulnerable (non-patched or those still with XP or old linux) ATM's and installs phone trojan on the ATM

* the outsiders get the money from the ATM with their cellphone through an unprotected USB (why did that port accept commands from outside from an unknown device ? even if it was infected ?)

* they have a nice Holiday :)

many banks are still running ATM's on XP or are not monitored for changes to the system (infection)

The comments are closed.