Cyber Crooks Targeting Windows XP-Based ATM Machines

June 5, 2009

(ChattahBox)—You may want to think twice the next time you drive up to an ATM machine and blithely insert your bank card into the nondescript machine and plug in your PIN number, because a gang of cyber crooks are now targeting ATM machines.

European hackers are targeting ATM machines that run on Windows XP with a new malware program that provides full access to a user’s pin codes and other personal data.

Trustwave’s SpiderLabs analyzed the unique malware program discovered in nearly 20 ATM machines in Eastern Europe and have never seen anything like it. All of the infected machines were found to run on Windows XP.

The hackers used a simple dropper file to install and activate the malware virus. A dropper file is a tiny infected, standalone program that drops a virus into a system. One the dropper installs and activates the malware program; the hackers obtain full access to the private memory space of all of the transaction-processing applications on ATMs.

The malware program works by capturing the magnetic strip data and PIN codes. The cyber crooks then access the personal data by inserting a specially designed card into the ATM, where they can pull up their own customized user interface.

Once this occurs, the hackers have effectively hijacked the ATM and you can say goodbye to your money.

Cyber security experts have issued previous warnings to banking institutions regarding the risk of using a Windows based system to run ATM machines. Some have even called the practice stupid.

Many ATMs now run Windows operating systems connected to a large group of servers over an IP network, exposing personal data to theft, and denial of service attacks.

Many systems don’t even encrypt data as it travels through the network, exposing card numbers, card expiration dates, transaction amounts, and account balances in plain text, making it easy for determined cyber crooks to harvest customer’s data.

The virus experts of SpiderLabs believes the cyber crooks are using Eastern Europe as a testing ground for their malware program, before they launch the virus to infect ATMs in the United States and other countries.

Source


Comments

4 Responses to “Cyber Crooks Targeting Windows XP-Based ATM Machines”

  1. Paying On Time - Credit Cards » Cyber Crooks Targeting Windows XP-Based ATM Machines - Chattahbox.com on June 5th, 2009 4:35 pm

    […] and plug in your PIN number, because a gang of cyber crooks are now targeting ATM machines … Go to Source Related Posts:How Crooks Go Phishing For Your Information – Eyewitness NewsGold can be available […]

  2. Old Man Dotes on June 5th, 2009 4:41 pm

    Running ANY Microsoft product to handle customer financial data is a high-risk practice; any banks doing so face the very real threat of lawsuits brought by customers who become victims, because the banks are being knowingly and willfully negligent with that customer data.

  3. Cyber Crooks Targeting Windows XP-Based ATM Machines - Chattahbox.com | YoGoG.com on June 5th, 2009 5:00 pm

    […] Go to Source […]

  4. stamford school » Microsoft Rewarding Legit Users with FREE SOFTWARE on June 6th, 2009 1:13 pm

    […] Cyber Crooks Targeting Windows XP-Based ATM Machines | ChattahBox … […]

Got something to say? **Please Note** - Comments may be edited for clarity or obscenity, and all comments are published at the discretion of ChattahBox.com - Comments are the opinions of the individuals leaving them, and not of ChattahBox.com or its partners. - Please do not spam or submit comments that use copyright materials, hearsay or are based on reports where the supposed fact or quote is not a matter of public knowledge are also not permitted.