TweakTown
Tech content trusted by users in North America and around the world
6,251 Reviews & Articles | 40,806 News Posts
TRENDING NOW: Sony teases PlayStation 5 could be a cloud-based console

Cybercriminals compromise ATMs to spit out cash by sending SMS message

Symantec warns of sophisticated malware that allows cybercriminals to send a text message to compromised ATMs, then walk up and collect the money

| Hacking & Security News | Posted: Mar 25, 2014 12:18 am

As the Microsoft end of support for the aging Windows XP operating system quickly approaches, security researchers believe the banking industry faces a serious risk of compromised ATMs, according to Symantec.

 

TweakTown image news/3/6/36528_01_cybercriminals_compromise_atms_to_spit_out_cash_by_sending_sms_message.jpg

 

The Backdoor.Ploutus.B malware variant, an upgraded version of sophisticated malware that proved effective in 2013, allows cybercriminals to force ATMs to dispense cash.

 

The criminals simply send an SMS to a compromised ATM, walk up, and collect the stolen cash - using a network packet monitor (NPM) and other tools to properly infect the ATM.

 

"As soon as the compromised ATM receives a valid TCP or UDP packet from the phone, the NPM will parse the packet and search for the number '5449610000583686' at a specific offset within the packet in order to process the whole package of data," said Daniel Regalado, Symantec security researcher, in a blog post. "Once that specific number is detected, the NPM will read the next 16 digits and use them to construct a command line to run Ploutus."

NEWS SOURCES:Scmagazine.com

Related Tags

Further Reading: Read and find more Hacking & Security news at our Hacking & Security news index page.

Do you get our news RSS feed? Get It!

Got an opinion on this news? Post a comment below!

Latest News Posts

View More News Posts

Forum Activity

View More Forum Posts

Press Releases

View More Press Releases