最有看点的互联网金融门户

最有看点的互联网金融门户
其他国际资讯

美国多地ATM遭受黑客袭击

据安全博主Brian Krebs透露,美国特勤局上个星期开始警告金融机构,因为近日来美国多个药房和大型零售店的自动取款机遭受了网络黑客攻击。

Krebs引用一位消息人士的话说,这些骗子似乎使用的是一种名为Ploutus.D的恶意软件,攻击目标是Diebold Opteva 500和700系列自动柜员机。 Diebold在一份安全警报中表示,这些袭击似乎与去年袭击墨西哥的袭击类似。

特勤局说,犯罪分子伪装成ATM服务技术人员使用内窥镜医疗设备来查看取款机内部,并找到可以将电脑连接到自动取款机的计算机的地方。然后,他们安装恶意软件,强制ATM自动提取现金。

Diebold建议操作人员控制人员进入ATM区域的服务区域,并为服务技术人员实施双因素访问控制机制。

这可能是美国首次遭受这样的黑客袭击,但是其实类似的事件早已在世界其他地区上演。2017年上半年,欧洲的ATM黑匣子攻击数量猛增,在这些攻击中,设备附属于机器和命令兑现。

来自欧洲安全交易协会(East)的数据显示,在六个月内全球11个国家共有114个国家,比2016年上半年增加了300%以上,估计相关损失为150万欧元。

According to security blogger Brian Krebs, the Secret Service began warning financial institutions last week that stand-alone ATMs in places like pharmacies and big box retailers have been targeted in recent days.

The crooks seem to be using a strain of malware called Ploutus.D to hit Diebold Opteva 500 and 700 series ATMs, says Krebs, citing a source. In a security alert, Diebold says that the attacks appear to be similar to a spate that hit Mexico last year.

The Secret Service says that the criminals - masquerading as ATM service technicicans - use endoscope medical devices to look inside cash machines and find the spot where they can attach a cord to link a laptop to the ATM's computer. They then install malware and force the ATM to spit out its cash.

Diebold recommends that operators controll access to areas used by personnel to service the ATM and implement two-factor access control mechanisms for service technicians.

This is thought to be the first time that jackpotting has been carried out on US soil but the technique has long been deployed in other parts of the world. Europe saw a surge in the number of ATM black box attacks - where devices are attached to machines and command cash outs - in the first half of 2017.

There were 114 across 11 countries over the six months, more than 300% up on the 28 seen in H1 2016, according to the European Association for Secure Transactions (East), which estimates related losses of EUR1.5 million.


用微信扫描可以分享至好友和朋友圈

扫描二维码或搜索微信号“iweiyangx”
关注未央网官方微信公众号,获取互联网金融领域前沿资讯。

发表评论

发表评论

您的评论提交后会进行审核,审核通过的留言会展示在下方留言区域,请耐心等待。

评论

您的个人信息不会被公开,请放心填写! 标记为的是必填项

取消

美国:国税局针对数字货币税收将出台更具体的指导

Kyle Baird | 巴比特资讯 06-29

美国政府官员必须披露加密货币持有情况

链创国际资讯 06-21

网络借贷推动美国小企业发展 3年创造35.8万个就业机会

栀航 06-12

从BAT到ATM,一文解析蚂蚁金服的逻辑和风险

毛琳Michae... | 钛媒体 06-11

纽约时报:美国加密市场监管,层出不穷的挑战

Peter J. H... 06-06

版权所有 © 清华大学五道口金融学院互联网金融实验室 | 京ICP备17044750号-1