SC Magazine reported on the discovery of a new family of malicious software for ATMs, with which attackers can steal all the money stored in them. The worm is called ATMii and targets devices running Windows 7 and Vista.
ATMii activity was first noted in April 2017. Researchers from Kaspersky Lab who discovered the malware noted the simplicity of its design - the worm consists of only two modules: the first implements the second, which carries out unauthorized actions. The injection module is a simple command line application in Visual C.
In order to infect an ATM, hackers need direct access to it - network or physical (via USB). After installing a worm from an ATM, you can steal all the funds stored in it.
In order to protect their ATMs, financial institutions should set a ban on running third-party code and disable the ability to work with flash drives.
Such attacks on ATMs are called logical - attackers who choose this method do not steal users’ bank card data, do not take the ATM away in a pickup truck to cut it up in the garage, or even blow it up. They transmit commands to the ATM equipment and, without causing physical damage to it, start the process of dispensing money.
ATMii activity was first noted in April 2017. Researchers from Kaspersky Lab who discovered the malware noted the simplicity of its design - the worm consists of only two modules: the first implements the second, which carries out unauthorized actions. The injection module is a simple command line application in Visual C.
In order to infect an ATM, hackers need direct access to it - network or physical (via USB). After installing a worm from an ATM, you can steal all the funds stored in it.
In order to protect their ATMs, financial institutions should set a ban on running third-party code and disable the ability to work with flash drives.
Such attacks on ATMs are called logical - attackers who choose this method do not steal users’ bank card data, do not take the ATM away in a pickup truck to cut it up in the garage, or even blow it up. They transmit commands to the ATM equipment and, without causing physical damage to it, start the process of dispensing money.
