News

ATM network segmentation no guarantee against malware, study says

September 27, 2017

The Europol European Cybercrime Centre and Trend Micro, a provider of cybersecurity solutions, have released a comprehensive report on the current state of ATM malware.

"Cashing in on ATM Malware" details physical and network-based malware attacks on ATMs, and highlights where the malware is created, a Europol press release said.

According to the report, ATM malware no longer depends on physical access to infect a machine; criminals have proven that they can also obtain network-based access using a bank's corporate network.

The report examines recent attacks that have used bank networks to steal both money and credit card data from ATMs, regardless of network segmentation. These attacks not only risk personally identifiable information and large sums of money, but also put banks in violation of PCI compliance standards, the release said.

"The joint industry-law enforcement report by Europol's EC3 and Trend Micro shows that the malware being used has evolved significantly and the scope and scale of the attacks have grown proportionately," EC3 head Steven Wilson said in the release. "This report assesses the developing nature of the threat. I hope that it serves as a blueprint for future industry and law enforcement cooperation."

Read the public reportin PDF format

(A more detailed, limited-release version of the report is available to law enforcement authorities, financial institutions and the IT security industry. This private report provides information on hardening ATM and network systems against attacks.)