In 2016 Kaspersky Lab employees participated in incident response cases that took place in dozens of financial institutions around the globe. In most cases we had to provide forensics analysis of ATMs. When Carbanak attack details were announced at #TheSAS2015, criminals also found this information useful. Other criminal groups eagerly adopted the same TTPs. Banks started to suffer from attacks on ATMs including both, malware and physical access.
• Direct attacks on the peripherals and low-level hardware protocols
• Hacker movie-style hardware drops in bank offices
• Carbanak-like software attacks on ATM software layer
• Bluetooth HID dongles implanted in ATMs instead of black boxes
We will provide details about each of these cases and present a cheap and simple hardware design that (when applied with a bit of physical labor) can empty one of the most popular ATM models in the world.
Get exclusive access to more presentations given at #TheSAS2017: https://kas.pr/721r
#KasperskyLab #cybersecurity #ITsecurity