35 Diebold ATMs kicked out all your money for the hackers. Jackpotting attack

A cybercriminal group managed to steal all money from at least 35 ATMs operated by some Italian banks using an attack technique known as a “black box”. Local authorities confirmed that the hacker group stole approximately 800 thousand euros in a 7-month campaign identified as #ATMBlackBoxAttack.

Italy’s carabinieri corps identified 12 members of the criminal gang, arresting 6 individuals while 3 other individuals are in Poland under investigation. Local media report that this hacking group has multiple operating centers in various Italian cities, including Modena, Mantua, Vicenza and Parma.

ATM theft gang arrested in Italy 🇮🇹

In just 7 months, about 800,000€ have been stolen from 35 ATMs and Post Office cash dispensers using #ATM Black Box attack.

Here the list of victim Banks with date and impacted City:https://t.co/1Ysmc0xMIK pic.twitter.com/NkRr5IfUGn
— Bank Security (@Bank_Security) November 27, 2020

On the attack variant used, cybersecurity specialists mention that this is an attack similar to the jackpotting technique in which ATMs are forpowered to hand over all the money through a series of commands issued by a device known as a black box. These devices must be connected to the attacked ATM in order to complete sending commands.

Black box attacks have become extremely popular among the cybercriminal community in the United States and Europe, so multiple groups of malicious hacking have focused on developing and selling the hardware and software tools needed to complete these attacks.

In addition, ATMs with poorer security measures become especially vulnerable to these attacks, as they are easier to physically manipulate and mostly do not have the right protection mechanisms at the software level.

A few months ago, ATM manufacturer Diebold issued an alert to customers warning all banks of a new variant of black box attacks or ATM jackpotting. The alert was issued after Agenta Bank in Belgium was forced to close 143 ATMs after a jackpotting attack, one of the most serious incidents in this regard.

Atul Narula

He is a cyber security and malware researcher. He studied Computer Science and started working as a cyber security analyst in 2006. He is actively working as an cyber security investigator. He also worked for different security companies. His everyday job includes researching about new cyber security incidents. Also he has deep level of knowledge in enterprise security implementation.

35 Diebold ATMs kicked out all your money for the hackers. Jackpotting attack

Critical Vulnerabilities in Cisco ASA & FTD Exposed! Learn How to Exploit CVE-2024-20353 and CVE-2024-20359

Dual Vulnerabilities in Microsoft SharePoint Server: Essential Steps to Mitigate Vulnerabilities

Exploiting the High-Risk Vulnerabilities in Secure Boot of Most Linux Devices on the Planet

Hackers’ New Target is containerized environments through vulnerabilities in runC

Hacking Android, Linux, macOS, iOS, Windows Devices via Bluetooth using a single vulnerability

110 Million AT&T Customers’ Data leaked: Inside the $370,000 Ransom Payment

How Hackers Stole Taylor Swift Tickets: The Full Ticketmaster Breach Story

Dark Web Sale: AMD’s Confidential Data Leaked – Full Story Revealed!

How Snowflake Hack is Linked to Santander(Spain, Chile, Uruguay) and Ticketmaster Breaches.Are You Affected?

Healthcare Hack Horror: Cyberattacks Leave French Hospitals in Chaos for $10 Million

Hacking the Unhackable: The Story of How CISA Was Breached

The Cloudflare Hack: A Hacker, 5000 Credentials, and Operation Code Red

Comparing CIS v8, CIS AWS Foundations Benchmark v1.5, and PCI DSS v4.0 for CSPM. Which you Should Start With?

MITRE EMB3D Explained: Top Threats to Embedded Devices and How EMB3D Mitigates Them

Google Gemini Under Fire: Critical Security Vulnerabilities You Need to Know to hack Gemini

Cracking SCCM Wide Open: Pentesting System Center Configuration Manager with Misconfiguration Manager

Hacking Windows 10 and 11 with DLL Search Order Hijacking without administrator rights

Hacking SSH Connections by exploiting SSH Protocol Vulnerabilities: Different Terrapin Attack Vectors

Understanding Latest DHCP DNS Vulnerabilities and How DHCP Exploits work in Active Directory

Hacking Bluetooth via MiTM: The BLUFFS Bluetooth attack to hack into Millions of Devices

6 Steps to File Anonymous SEC Complaints Against Data Breachers & Force Them to Pay Fines or Take Action

Inside the Exploit: How Your ChatGPT’s Uploaded Files Could Be Stolen by Prompt Injection Vulnerability

This Google Calendar technique allows to hack into companies without getting detected

This telegram bot is like ChatGPT for scammers to steal money from victims easily

How easy is to bomb someone mobile phone with thousands of SMS messages?

This new DDoS attack prevention technique has a 99% accuracy rate

How to secure Cisco Firepower Threat Defense (FTD) firewalls ?

The Dark Side of PDFs: How Opening a Simple PDF Could Unleash a Cybersecurity Nightmare

Largest soft drink bottle supplier, recycle and plastic manufacturers hacked by ransomware

Visited thesaurus.com in search for Synonyms? You have Coinminer malware infection

How to send malware via Teams, even “Safe Attachments” or “Safe Links” can’t protect you

2 Big Cloud hosting companies shutdown by ransomware and lose all customer data