FBI Warns Cash Machine Global Cyber-Attack Imminent

British Banks have been Warned their ATMs Could be Mass-Hacked by Cyber Criminals 'in the coming days'
British banks have been warned their ATMs could be targeted by cyber criminals as part of a coordinated global mass-hack.
A confidential alert from the FBI told international banks that criminals are plotting a concerted global malware attack on cash machines “in the coming days”.
According to the Daily Telegraph, this could take the form of a “highly choreographed fraud scheme” known as an ATM “jackpotting”, in which thieves hack a bank or payment card processor and use cloned cards at cash machines around the world to take out millions in just a few minutes.
Andrew Bushby, UK director at Fidelis Cybersecurity, told the paper that UK banks “are a likely target – and this latest ‘ATM cash-out blitz’ will no doubt send shockwaves to financial institutions”.
While UK-based banking giants such as Barclays and HSBC were made aware of the threat, it is believed that smaller, independent banks are most at risk as criminals are more likely to target banks that issue debit cards but tend to have less stringent security systems.
Krebs on Security says that organised cybercrime gangs that coordinate unlimited attacks “typically do so by hacking or phishing their way into a bank or payment card processor. Just prior to executing on ATM cashouts, the intruders will remove many fraud controls at the financial institution, such as maximum ATM withdrawal amounts and any limits on the number of customer ATM transactions daily”.
The security blog says virtually all ATM cashout operations are launched on weekends, often just after financial institutions begin closing for business on Saturday.
Source: theweek

Latest Jobs
-
- 6 month contract Operational Cyber Security - SIEM, Vulnerability, Cyber Essentials + London, Inside IR35
- City of London
- Depending on experience
-
6 month contract inside IR35 Operational Cyber Security London c50% of the role is day to day operations / administration / liaising with 3rd party monitoring suppliers. More though investigations, getting ready for cyber essentials plus. Following up on vulnerability management. 20-30% active monitoring of alerts, tooling etc. 10% reporting / light oversight of junior Experience with Microsoft defender / Azure, Splunk, Tenable Experience in maintaining Cyber Essentials Plus is a big bonus. Knowledge across ISO27001, NIST GDPR required. Inside ir35 need someone in their London (city) office 2-3 days a week.
-
- CONTRACT Fluent French AND English Cyber Security Project manager - 12 month
- United Kingdom
- Dependent on experience
-
Fluent French / English Contactor cyber Security Project Manager needed. Experience in migrating technical cyber services from one physical region to another. Experience with Crowdstrike, Tanium, Palo Alto and or Zscaler ideal or comparable solutions. Language fluency in French AND English is essential. 12 month contract. Looking to start June. Day rate dependent on Experience. Apply today for more details
-
- GRC Security Contractor - Achieve SOC2 Type 1 Compliance - 6 month
- London
- Dependent on experience
-
GRC security practitioner needed to ensure a financial service business to achieve SOC 2 type 1. Experience managing the end to end process is key, you will be the key individual to deliver this within a 6 month deadline. Experience of SOC 2 type 1 / type 2. The gathering of evidence, baseline of 27001, ukdpa, GDPR NIST etc. Looking to interview ASAP.
-
- Contact 12 month- Security Operations- Crowdstrike Falcon Insight EDR / Analyst.
- United Kingdom
- Dependent on experience
-
Security Operations engineer / Analyst with Crowdstrike Falcon Insight EDR experience for a 12 month contract. Experienced Contractor with Crowdstrike Falcon Insight: Endpoint detection and Response (EDR) experience needed - 12 month rolling project. Implementation, configuration and Analyst experience needed with Crowdstrike Falcon Insight: (EDR) Migration project- relocating capability internationally. technically implementing, configuration of that that migration and then transition to BAU role monitoring. DCL Search exclusive associate Project.