Considering your ITM strategy? Click the link for The Financial Brand article to learn more!

Read More
Service: 877.309.1048
Place A Service Request
Contact Sales

ATM Jackpotting Notice

October 4, 2024
Screenshot 2024 10 04 At 2.28.55 pm

Valued Partners,

Recently we have had some questions regarding ATM Jackpotting. Although these attacks are rare, and we have not been able to verify that any attacks in our area that have occurred recently, we wanted to let you know what safeguards can be utilized.

What is ATM Jackpotting:

  • ATM Jackpotting is a type of cybercrime where malicious software or hardware is installed on an ATM to force it to dispense large amounts of cash without requiring a valid card or PIN. This is often done by bypassing the ATM’s security systems and directly manipulating its cash dispensing mechanisms.

How it works:

  1. Physical Access: Attackers gain physical access to the ATM, often by disguising themselves as maintenance workers or technicians.
  2. Malware or Hardware Installation: They then install malicious software or hardware devices into the ATM’s internal components. These devices can be as simple as a USB drive or as complex as specialized hardware designed to exploit vulnerabilities in the ATM’s operating system.
  3. Cash Dispensing: Once the malicious code is executed, it instructs the ATM to dispense large amounts of cash, bypassing the normal authorization and verification processes.

The attacker can then collect the cash before the ATM’s security systems are alerted.

ATM Jackpotting Image

Case Financial is being proactive against ATM Jackpotting attacks by offering:

  • Prestaging/Installing ATMs:
    • Case Financial and our OEMs utilize a multitude of security practices that meet or exceed industry best practices
    • These practices can be shared by individual customer request but may include:
      • Multiple Complex Password Restrictions
      • Elimination of Auto Run Capabilities
      • Narrowing Port Access Restrictions
      • Encrypted Transactions
      • Certain HW designed in safe for additional protections
  • Additional security enhancements Case Financial can add to your ATM 
    • RemoteView Software (contact Case for specific pricing)
      • Security Plus Module:
        • AI monitored detection software, optimal active whitelisting protection against unauthorized USB access or software changes
      • Hard Drive Encryption:
        • Lockdown with 256-bit encryption to prevent unauthorized access. Safeguard against stolen hard drive
  • Add TLS 1.2 (transaction layered security): For ATMs that do not already have this enabled, your processor can set-up a job and Case would access certificate and initiate work onsite or via RemoteView at T&M rates
  • Upgrade Surveillance: Updating your cameras system to pick up action or loitering at your ATM locations could pick-up unauthorized individuals
  • Alarm & Notifications: Adding a siren and top box security can detour a thief trying to gain unauthorized access

Contact Case Financial today to take advantage of the next safeguards on your ATM Fleet.