24 February 2018
visit www.ebaday.com

Criminal malware infection hits Eastern European cash machines

29 June 2009  |  7537 views  |  0 ATM

ATMs in Eastern Europe have been infected with a sample of Windows malware that enables criminals to harvest card data and PIN codes via the machine's recipt printer.

The malware - uncovered by UK-based Trustwave - is installed and activated through a dropper file by the name of isadmin.exe and has been found on machines running the Windows XP operating system. Once installed, the attacker can interact with the ATM by simply inserting a controller card and accessing an array of command options via the machine's keypad.

Trustwave says the command options allow for the output of harvested magstripe card data via the ATM's receipt printer or by writing the data to an electronic storage device using the machine's card reader. Analysts also discovered code indicating that the malware could eject the cashdispensing cassette.

Trustwave recommends that all financial institutions perform analysis of their ATM environment to identify if this malware or similar malware is present.

In a statement, the company says: "Trustwave collected multiple version of this malware and therefore, feels that over time it will evolve. It will also begin to propagate to a more wide-spread population of ATMs, thus a proactive approach in prevention and identification will be necessary to prevent future attacks."

Read the full Trustwave analyst briefing document:» Download the document now 76.1 kb (PDF File)

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

New York ATM skimming gang steals $500,000

New York ATM skimming gang steals $500,000

13 May 2009  |  10873 views  |  0 comments
Australian ATM skimming gang nets $500,000

Australian ATM skimming gang nets $500,000

24 March 2009  |  10407 views  |  1 comments
RBS WorldPay ATM heist nets $9 million in 30 minutes

RBS WorldPay ATM heist nets $9 million in 30 minutes

04 February 2009  |  28036 views  |  4 comments
International ATM skimming network busted

International ATM skimming network busted

21 November 2008  |  10031 views  |  0 comments
Computer expert convicted of using MP3 players to hack ATMs

Computer expert convicted of using MP3 players to hack ATMs

20 November 2006  |  12192 views  |  0 comments
Tranax ATM master passwords found on the Internet

Tranax ATM master passwords found on the Internet

22 September 2006  |  14941 views  |  0 comments
Diebold takes virus protection measures after worm spreads to cash machines

Diebold takes virus protection measures after worm spreads to cash machines

12 December 2003  |  6227 views  |  0 comments

Related blogs

Create a blog about this story (membership required)
visit www.ebaday.comVisit www.vasco.comvisit www.nextgenbanking.co.uk

Top topics

Most viewed Most shared
Ripple makes new connections to emerging marketsRipple makes new connections to emerging m...
11792 views comments | 16 tweets | 10 linkedin
hands typing furiouslySome Interesting Applications Of The Inter...
10325 views 3 | 9 tweets | 1 linkedin
Basel Committee outlines disruptive fintech scenariosBasel Committee outlines disruptive fintec...
8568 views comments | 15 tweets | 26 linkedin
Investment Association sets up fintech accelerator for asset managersInvestment Association sets up fintech acc...
8089 views comments | 19 tweets | 10 linkedin
R3 creates Legal Centre of Excellence for blockchain technolgyR3 creates Legal Centre of Excellence for...
7772 views comments | 10 tweets | 14 linkedin

Featured job

Competitive
Germany, Austria or Switzerland

Find your next job