By now you have likely read about the FBI warning issued this month, regarding global ATM cashout schemes.
“The FBI has obtained unspecified reporting indicating cybercriminals are planning to conduct a global automated teller machine cashout scheme in the coming days, likely associated with an unknown card issuer breach and commonly referred to as an ‘unlimited operation,’ ” the advisory read.
This scheme is a choreographed ATM cashout involving organized cybercrime gangs and is done by hacking into the ATM network through malware (circumventing fraud controls) and then withdrawing substantial amounts of money.
“The cyber criminals typically create fraudulent copies of legitimate cards by sending stolen card data to co-conspirators who imprint the data on reusable magnetic strip cards, such as gift cards purchased at retail stores,” the FBI warned. “At a pre-determined time, the co-conspirators withdraw account funds from ATMs using these cards.”
As part of the alert, the FBI provided some guidance on how to better protect your institution. They encouraged a review on how your current security is being handled and to implement strong password requirements. Additionally, the FBI suggested the use of a two-factor authentication by a physical or digital token for administrators and business critical roles.
We’ve summarized additional tips in the graphic below:
For more information, as well as an update on how an ATM cashout scheme was executed against Cosmos bank in India shortly after the FBI warning was issued, read this article by KrebsOnSecurity: