I’ve read that most ATMs are still running Windows XP.

“The Secret Service tells U.S. financial institutions to get ready for a wave of ATM hacking attempts.

As the world of ATM theft enters the 21st century, the Secret Service sent out a warning over malware that can turn an ordinary teller machine into a lucky slot machine.

It’s called Jackpot and it’s been traced back to at least six attacks across the country last week, with more than one million dollars stolen so far…”

http://www.oann.com/secret-ser...-warns-of-atm-hacks/

I would not worry about the banks, they have insurance to cover this, and if that does not cover the total cost it will be passed on to the customers.

It does not surprise me in the least that the banks were not prepared for this.

I noted they would not tell how it's done.

The issue been around for over a decade. Newer twist is removing the hard drive and booting the ATM up with another drive. Still requires physical access to the machine. The only reason this is getting attention is it is finally happening in the US. If the computer core is inside the ATM safe then there less chance of a hack, because if I can open the safe...
Not sure how many ATMs are running Win XP but most I have seen are running Win7. Some of the retail ATMs are running out dated Win CE or Win whatever embedded.
This is not something public needs to worry about. Just makes for great headlines.

My bank was hit a couple weeks ago at one location, so I want to assume it was a reader. But I probably won't hear the details to ensure how to protect myself.
Those accounts that were hit were taken care of.

From an article I read, access to some of the Diebold ATMs was via a key that was readily available on line.

quote:

Originally posted by detroit192:
The issue been around for over a decade. Newer twist is removing the hard drive and booting the ATM up with another drive. Still requires physical access to the machine. The only reason this is getting attention is it is finally happening in the US. If the computer core is inside the ATM safe then there less chance of a hack, because if I can open the safe...
Not sure how many ATMs are running Win XP but most I have seen are running Win7. Some of the retail ATMs are running out dated Win CE or Win whatever embedded.
This is not something public needs to worry about. Just makes for great headlines.

My favorite ATM theft, by the numbers:
1- Steal a backhoe.
2- Drive backhoe to stand alone ATM at 3 AM.
3- Wrap heavy chain around ATM and attach to back hoe.
4- Yank ATM off its base, using backhoe.
5- Drag ATM down the street with backhoe.
6- Meet oncoming Police vehicles.
7- Abandon backhoe / ATM and run away.
8- Encounter bitey Police K9.
9- Get treated in ER for dog bites.
10- Get jailed.

quote:

Originally posted by BBMW:
From an article I read, access to some of the Diebold ATMs was via a key that was readily available on line.

quote:

Originally posted by detroit192:
The issue been around for over a decade. Newer twist is removing the hard drive and booting the ATM up with another drive. Still requires physical access to the machine. The only reason this is getting attention is it is finally happening in the US. If the computer core is inside the ATM safe then there less chance of a hack, because if I can open the safe...
Not sure how many ATMs are running Win XP but most I have seen are running Win7. Some of the retail ATMs are running out dated Win CE or Win whatever embedded.
This is not something public needs to worry about. Just makes for great headlines.

The the reality is unless a bank or independent ATM deployer has custom locks and keys installed all ATMs use common keys for access. Kinda like construction equipment, also commonly used in ATM ram attacks, there are only a few keys used by each brand. And keys are not needed for this attack. If the ATM is say sticking through the wall of a bank Diebold ATM have been attacked by drilling a hole in the front plastic fascia. Then a USB drive is inserted through the hole on a jig and then using a jig the ATM is reset. Cover the hole with a sticker after the ATM is empty and you are done. And even if the keys were not readily available a set is sold with each ATM so yeah keys are readily available.
The other reason this is on the rise is the malware involved maybe more user friendly and available. The original malware required a one time use code to access. The developer would send the criminal a new code once they got paid. So even if it was out in the wild the malware could only be used if you knew how to contact the criminals at the other end. If the malware itself has been compromised and the one time use removed...
All of this is an arms race. I am surprised by the new twist of replacing the hard drive, but not shocked.