Over the past decade, ATM and POS malware has developed rapidly. The FBI has repeatedly warned about cash-out schemes involving malware attacks to gain ATM or POS control and access to customer data and funds. Europol highlighted the emerging threat of ATM malware as it warned that incidents of ATM targeting are likely to rise in the future.
Cyberwall will protect your ATM, and POS devices from these types of threats with unique and effective tools and provide 24x7x365 monitoring.
The success of "Jackpotting" and other malware-enabled attacks on ATMs highlight the challenges of protecting ATM devices against motivated adversaries. In 2016, hackers in Japan stole $13 million USD from ATMs in a three-hour, 14,000 withdrawal spree. In Taiwan, hackers breached a major domestic bank in the same year and used malware to withdraw more than $2 million USD from dozens of ATMs. A similar crime also occurred in August 2018, in which an India-based bank system was hacked via a malware attack on its ATM server and nearly $13.5 million USD was successfully siphoned off.
These devices often use older hardware and operating systems, lack reliable network connectivity for updates, and are difficult to manage. As the result, it is impractical to rely solely on traditional technologies such as antivirus and application whitelisting for safeguarding these critical assets. ATM attacks bypass such baseline security controls, allowing criminals to dispense cash and steal customer data.
The POS network and devices in several big retail store and restaurants' chains have also been compromised causing millions of dollars in losses.
Minerva’s Anti-Evasion Platform is effective in protecting ATM and POS devices from these threats even when attackers bypass the other security measures
Cyber-criminals employ specialized malware to interface with ATM software to dispense cash. Minerva’s Anti-Evasion Platform prevents malicious code from interacting with ATM middleware components such as XFS. As the result, even if malware finds a way to run on the ATM, it will be unable to direct the ATM application to take unauthorized actions. Upon preventing the attack, Minerva notifies the IT and security teams about the security event. However, even if the organization is unable to respond to the incident right away, the ATM remains in a protected state, with the attackers failing to reach their objective.
The Anti-Evasion platform provides reliable and comprehensive safeguards against ATM malware. Each component reinforces the others to offer the widest threat coverage against the techniques used to bypass existing defenses. The platform is designed to:
Our ATM security capabilities are built to meet the challenges of real-world ATM deployments. Our solution maintains its effectiveness even if the ATM is not connected to the network. The platform is compatible with all variants of Microsoft Windows, including older OS versions, and can operate even on under-powered systems. Moreover, the platform doesn’t require burdensome configuration or maintenance tasks.