"Per the bulletin, the FBI says hackers are using a mix of physical access to ATM machines, such as generic keys for unlocking front panels and accessing hard drives, and digital tools, like planting malware that can force ATMs to rapidly dispense cash in a flash. The FBI warned that one particular malware, known as Ploutus, affects a variety of ATM manufacturers and cash dispensers by targeting the underlying Windows operating system that powers many ATMs."
"Ploutus grants the hackers full control over a compromised ATM, allowing them to issue instructions capable of tricking the dispenser into disbursing notes without drawing funds from customer accounts. Ploutus takes advantage of extensions for financial services, or XFS software, which ATMs rely on to communicate with its various other hardware components, such as the PIN keypad, the card reader, and the all-important cash dispensing unit."
ATM jackpotting has evolved from a demonstration into organized criminal operations that forcibly extract cash from dispensers. The FBI reports more than 700 attacks on ATMs in 2025 that netted at least $20 million. Attackers combine physical access—using generic keys to open front panels and access hard drives—with malware implants that force rapid cash dispensation. The Ploutus malware targets Windows platforms used by many ATMs and leverages XFS extensions to control components like PIN keypads, card readers, and cash units. Ploutus enables attackers to command dispensers to release notes without debiting customer accounts, producing fast, hard-to-detect cash-outs.
Read at TechCrunch
Unable to calculate read time
Collection
[
|
...
]