A fresh strain of ATM malware dubbed GreenDispenser is being used by hackers to drain cash from infected machines, according to researchers at security firm Proofpoint.
Once installed, the malware can display an “out of service” message on the ATM, yet attackers remain able to enter a specific PIN to drain money from the machine and even erase the malware by using a “deep delete” process.
Evidence suggests that GreenDispenser, which so far has only affected ATMs in Mexico and India, has to be installed manually.
“Initial malware installation likely requires physical access to the ATM, raising questions of compromised physical security or personnel,” Thoufique Haq, threat researcher at Proofpoint, wrote in a blog post.
The malware seems to be operated by hackers with the help of a mobile application, using a QR reader to generate a PIN that is then used to access the machine.
“We suspect that the attacker has an application that can run on a mobile phone with functionality to scan the barcode and derive the second PIN – a two-factor authentication of sorts. This feature ensures that only an authorized individual has the ability to perform the heist,” said Haq.
GreenDispenser also has the ability to delete itself – see menu below.
“Typically when a file is deleted, the operating system removes the reference pointer to the data but not the data itself. This allows files to be recovered using disk editors and forensics tools later in time.”
The Proofpoint research team says that ATM malware is continuing to evolve, adding increasingly stealthy features.
“While current attacks have been limited to certain geographical regions such as Mexico, it is only a matter a time before these techniques are abused across the globe,” writes Haq.
“We believe we are seeing the dawn of a new criminal industry targeting ATMs with only more to come. In order to stay ahead of attackers financial entities should re-examine existing legacy security layers and consider deploying modern security measures to thwart these threats.”
Furthermore, according to Kevin Epstein, vice president of threat operations for Proofpoint, financial institutions should review their security in light of the numerous strains of ATM malware being uncovered.
“ATM malware such as GreenDispenser is particularly alarming because it allows cybercriminals to attack financial institutions directly, without the extra steps required to capture credit and debit card information from consumers – and with correspondingly less traceability,” he said.
“In order to stay ahead of attackers, financial entities should re-examine existing legacy security layers and consider deploying modern security measures to thwart these threats.”
The latest malware variant comes after FireEye Labs recently discovered a new piece of ATM malware, dubbed Suceful, which targets cardholders and is able to retain debit cardson infected machines.
Last year, a variant codenamed Tyupkin was uncovered on over 50 ATMs in eastern Europeby Kaspersky Labs.
View the original content and more from this author here: http://ift.tt/1LRbKcO
from hacker samurai http://ift.tt/1KTSFKQ
via IFTTT
I got my already programmed and blanked ATM card to withdraw the maximum of $1000 daily for a maximum of 20 days. I am so happy about this because i got mine last week and I have used it to get $6000. Fred is giving out the card just to help the poor and needy though it is illegal but it is something nice and she is not like other scam pretending to have the ATM cards. And no one gets caught when using the card. get yours from him. Just send him an email on janeashley333@outlook.com and be happy like Me...
ReplyDeleteWhat has your government done to help save you from your financial instability? you strive to survive and yet you hear stories of how your leaders have become terror in your entities... is time to make a different. for will have made money, and we have also come to help you out from your long time of financial suffering. clearing of credit card is made available, software for hacking ATM machines, bank to bank hacking and transfer, change your school grade and become something useful in the society. we also have other form of services such as Facebook hack, whats-app hack, twitter hack, i cloud hack, tracking of smart phones, hacking CCTV, installation of software on desktop and PC, snap-chat hack, Skype hack, wire wire, bitcoin account hack, erase your criminal record and be free for ever. database hack and many more. e-mail: cyberhackingcompany@gmail.com for your genuine hacking services and we shock we your findings.
DeleteGET THE BLANK ATM CARD AND BECOME RICH
ReplyDeleteHello, am Joyce Benson from USA an ATM hacker on this email address. (walmartmoneycard@techie.com) its at it again! Cool way to have financial freedom!!! Are you tired of living a poor life, This PROGRAMMED blank ATM card is capable of hacking into any ATM machine,anywhere in the world this walmartmoneycard@techie.com here is the opportunity you have been waiting for. Get the new ATM BLANK CARD that can hack any ATM MACHINE and withdraw money from any account. You do not require anybody's account number before you can use it. Although you and I knows that its illegal,there is no risk using it. It has SPECIAL FEATURES, that makes the machine unable to detect this very card,and its transaction is can't be traced . You can use it anywhere in the world. With this card,you can withdraw nothing less than $50,000 in a day. So to get the card,reach the hackers via email address :walmartmoneycard@techie.com. you can text me on +12102479012 to get more info.
CONTACT walmartmoneycard@techie.com TO GET YOURS NOW.....
EXPERIENCED HACKER FOR HIRE.....WE SPECIALIZE IN HIGH GRADE UNLOCKING,PHONE TRACKING,DATABASES HACK,CODE ENCRYPTION,UNTRACEABLE IP,WEBSITES HACK,BANK TRANSFERS,CREDITS CARD HACK,CLEARING OF CRIMINAL RECORDS,EMAIL ADDRESS HACKING,COMPANY RECORDS HACKING. WE CAN EVEN PUT YOUR NAME IN THE KINGDOM OF HEAVEN.
ReplyDeleteCONTACT ASAP ON hackass099@gmail.com
SERIOUS MINDED PEOPLE SHOULD CONTACT....
PLEASE READ!!!
ReplyDeleteCelebrate this season with joy and gladness in your heart, Do you know that you can hack any ATM machine? this is a Life Time transformation I have being hearing about this blank ATM card for a while and i never really paid any interest to it because of my doubts. Until now i discovered a hacking lady called Cindy. Am so happy I got mine from Cindy, My blank ATM card can withdraw $4,000 daily. I got it from Her last week and now I have $48,000 for free. The blank ATM withdraws money from any ATM machines and there is no name on it, it is not traceable and now i have money for business and enough money for me and my family to live on .I am really happy i met Cindy because i met two people before her and they took my money not knowing that they were scams. But am happy now. Cindy sent the card through DHL and i got it in two days. Get your own card from her now she is not like other scammer pretending to have the ATM card,She is giving it out for free to help people even if it is illegal but it helps a lot and no one ever gets caught. im grateful to Cindy because she changed my story all of a sudden . The card works in all countries Cindy's email address is cindytedder767@yahoo.com
Good day, Let me introduce myself, my name is Medina and i'm addressing the public because i got my blank ATM card from Georg Bednorz Hackers Cooperation. The card has a daily withdrawal limit of $1,000 USD in ATM's. I am extremely happy because i've used the card to pay all my debt. I placed an order and the card was delivered to me on the third day. I highly recommend Georg Bednorz hackers to my friends and interested individuals who are searching for the card. Send a mail to georgbednorzhackers@gmail.com to apply for your card now!
ReplyDeleteGood day, Let me introduce myself, my name is Medina and i'm addressing the public because i got my blank ATM card from Georg Bednorz Hackers Cooperation. The card has a daily withdrawal limit of $1,000 USD in ATM's. I am extremely happy because i've used the card to pay all my debt. I placed an order and the card was delivered to me on the third day. I highly recommend Georg Bednorz hackers to my friends and interested individuals who are searching for the card. Send a mail to georgbednorzhackers@gmail.com to apply for your card now!
ReplyDeleteWhat has your government done to help save you from your financial instability? you strive to survive and yet you hear stories of how your leaders have become terror in your entities... is time to make a different. for will have made money, and we have also come to help you out from your long time of financial suffering. clearing of credit card is made available, software for hacking ATM machines, bank to bank hacking and transfer, change your school grade and become something useful in the society. we also have other form of services such as Facebook hack, whats-app hack, twitter hack, i cloud hack, tracking of smart phones, hacking CCTV, installation of software on desktop and PC, snap-chat hack, Skype hack, wire wire, bitcoin account hack, erase your criminal record and be free for ever. database hack and many more. e-mail: cyberhackingcompany@gmail.com for your genuine hacking services and we shock we your findings.
ReplyDelete