Archive Links

Consumer Archive
CU System Archive
Market Archive
Products Archive
Washington Archive

News Now

CU System
ATM attacks more sophisticated says Javelin
PLEASANTON, Calif. (4/12/09)--ATM attacks have become more sophisticated--shifting from traditional skimming to use of malware inside ATMs or ATM networks, fraudulent mobile alerts and account takeover from stolen information, according to a new report. Attacks have been reported in which maintenance crews opened up ATMs and installed malware, according to a Javelin Strategy and Research study. ATM manufacturer Diebold issued a security update last year for its ATMs after they were attacked by criminals who installed malware to steal sensitive customer information (Financial Services Information Security News April 6). Individuals can gain access to sensitive information in ATMs via administrative privileges to encrypted personal identification number (PIN) data, then use a computer to reverse the PIN encryption, said Robert Vamosi, analyst at Javelin Strategy and Research. Other attacks have involved sending customers fake message alerts asking for account information. Criminals then use the information to create a cloned card, the publication said. The financial services industry is moving toward Triple Data Encryption Standard for all ATMs that will help prevent such attacks. Other steps financial institutions can take to protect their ATMs include using security software that guards against malware and using encrypted PIN pads in ATMs that are Payment Card Industry Data Security Standard-compliant, Vamosi added. About 10% of fraud victims experienced fraudulent ATM withdrawals, Javelin said. About 23% of those with the fraudulent withdrawals left their primary financial institution.


RSS print
News Now LiveWire
.@TheNCUA :Low-income CUs can expand services to members, train staff,collaborate for efficiencies w/more than $1M in grants awarded 2day
4 hours ago
.@CUNA joins 11 other financial service orgs urging @SenateFloor to take up #CISA to strengthen cybersecurity information sharing
5 hours ago
.@RedwoodCU and its staff donated a combined $5,100 toward AIDS Walk San Francisco. The CU is a longtime sponsor of the event.
5 hours ago
See the latest from @CUNA's CompBlog on Customer Due Diligence. http://t.co/rzOzDUpNMT
5 hours ago
New #FinCEN proposal would strengthen, clarify due diligence obligations for financial institutions. http://t.co/2yxVUXCrYA
5 hours ago