Viruses/Worms News

Russian scammers infect Diebold ATMs

Thursday, March 19, 2009

Cybercriminals have figured out how to infect Windows-based Diebold ATMs with malware capable of skimming credit card numbers and passwords, security experts said.

The malware has only affected Russian, Ukranian and American currency transactions within Russia, Diebold has confirmed. Security experts said the malware uses insider access rather than an external device.

The cybercriminal would have to return to the hacked ATM to swipe a special card that instructs the machine to issue a receipt containing the stolen information.

Security experts said the cybercriminals figured out how to access the Diebold DLL (dynamic-linked library) and that the malware had to issue the right code to pull protected information.

Diebold disclosed that it issued a security update in January for its ATMs running a Windows-based operating system.

The company said in a letter to its customers that machines in Russia had been infected but did not provide specifics on the attacks.

Security experts said the nature of the attacks make it unlikely the ATM scam will spread far. The ATM skimmer’s exposure in recovering the data when coming back to get the device makes it too risky.ADNFCR-1765-ID-19083605-ADNFCR

Related News:

Conficker worm could be 'weaponized,' web security researcher warns - 11.2.2009
In the year since the inception of the Conficker worm, a malicious strain of virus that has infected computers all over the globe, security researchers have tracked its spread to as many as 7 million machines.

Scareware rogue antivirus programs dominate U.S. threats this month - 10.30.2009
Scareware programs that mimic antivirus scanners and trick PC users into purchasing scam software were the most common threat removed in October by Microsoft's malware removal tool, the company said this week.

Facebook phishing attack contains Bredolab malware - 10.28.2009
Facebook users should be on the alert for a phishing attack that appears to come from Facebook itself for a password reset. Phony spam emails from the Bredolab botnet are tricking Facebook users into downloading a Trojan malware.

Bredo botnet battles Zeus for control of PCs - 10.26.2009
In the dark world of the cybercriminal economy, computer viruses battle not just against anti-virus security software, but even other strains of malware for control of infected PCs, security researchers said.

Gumblar Trojan exploits Adobe Reader and Acrobat security hole - 10.21.2009
A security flaw in Adobe Reader and Acrobat is being actively exploited by cyber attackers with malicious PDFs. Security researchers at IBM's web security labs have seen a surge in attacks on this security vulnerability.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now