- ‘Star Trek: Discovery’ unmasks the time-traveling Red Angel Thursday 8:30 PM
- Everyone is making memes of Meghan McCain saying ‘my father’ on loop Thursday 8:11 PM
- Irony of Georgia’s sperm-reporting bill flies by anti-abortion advocates Thursday 7:11 PM
- Sex scandals are consuming the K-pop industry Thursday 5:44 PM
- Trump supporters are abandoning Fox News over network’s latest hire Thursday 5:20 PM
- QAnon is attacking a random woman in a disturbing and dangerous way Thursday 4:59 PM
- Google celebrates Bach with AI-powered, music-making doodle Thursday 4:53 PM
- RIP: The best free trial in all of streaming entertainment Thursday 2:19 PM
- Which ‘Florida Man’ are you? Thursday 1:06 PM
- Hundreds of millions of Facebook passwords were accessible to employees Thursday 12:55 PM
- ‘Bitch I’m Bella Thorne’ morphs into TikTok dyslexia meme Thursday 12:17 PM
- Marvel is auctioning props and costumes from Netflix’s ‘Defenders’ franchise Thursday 12:12 PM
- Net neutrality advocates plan online watch party for the ‘Save the Internet’ Act Thursday 12:01 PM
- Tim Cook turns his iPad meme into an AirPod meme Thursday 11:46 AM
- Auschwitz Memorial asks visitors to stop taking playful photos at Holocaust site Thursday 11:33 AM
House Buy Fast/Flickr (CC-BY)
The FBI is warning banks that hackers are targeting their ATMs.
According to Krebs on Security, which first reported the news, it would happen via an ATM cash-out scheme, a highly choreographed international fraud attempt. Thieves “hack a bank or payment card processor and use cloned cards at cash machines around the world to fraudulently withdraw millions of dollars in just a few hours.”
The Federal Bureau of Investigation (FBI) learned of the scam, but not the exact details: it is supposed to happen sometime in the coming days, perhaps in tandem with a breach of a credit card issuer. It’s a type of attack known as an “unlimited operation.” In this scenario, a financial institution is compromised by malware so hackers can bypass traditional fraud limitations, exploit network access, and conduct massive theft of ATM funds. The hackers bypass controls and alter account balances so that, in essence, an unlimited amount of funds is available for withdrawal.
Typically, an ATM cash-out will happen over a weekend, often as banks are shutting down on Saturdays.
The FBI is urging banks to review their security practices, including their password requirements and whether multi-factor authentication is being employed, particularly for personnel with access to sensitive systems. Krebs on Security outlined other recommendations the FBI had for financial institutions as well. This includes things such as monitoring network traffic for unexpected connections or encrypted traffic over non-standard ports, as well as monitoring and auditing critical business accounts.
In a comment to CNN Money, the FBI said only, “In furtherance of public-private partnerships, the FBI routinely advises private industry of various cyber threat indicators observed during the course of our investigations.”
As of Tuesday, no reported hacks have been confirmed.
Christina Bonnington is a tech reporter who specializes in consumer gadgets, apps, and the trends shaping the technology industry. Her work has also appeared in Gizmodo, Wired, Refinery29, Slate, Bicycling, and Outside Magazine. She is based in the San Francisco Bay Area and has a background in electrical engineering.