Hackers hit ATMs with SMS malware

Hacker
Remote hack using a mobile phone.

Security experts have discovered a team of cyber-criminals responsible for hacking into stand-alone ATMs using adapted SMS messages.

Symantec said the hackers were using software called Ploutus which is hard to install because you need to get access to parts of the machine.

Early versions of Ploutus allowed it to be controlled via the numerical interface on an ATM or by an attached keyboard. However, the latest version is controlled remotely via text message.

Tricky hack

It is still not an easy hack to pull off. The attackers open up an ATM and attach a mobile phone, which acts as a controller, to a USB port inside the machine. The ATM still has to be infected with Ploutus.

In a blog post, Daniel Regalado, a Symantec malware analyst, wrote that the phone detects a new message under the required format, converts the message into a network packet and then forwards it to the ATM through the USB cable.

Ploutus has a network packet monitor that watches all traffic coming into the ATM and when it detects a valid TCP or UDP packet from the phone it generates a command line to control Ploutus. This saves a lot of time that a thief spends in front of the machine, decreasing the risk of detection.

The ATM is remotely triggered to dispense cash, allowing someone hired to do the risky job of stopping by to pick up the cash a quick exit. The "money mule" also does not have any information that allows them to skim some cash off for themselves.

Latest in Security
China
Chinese hackers targeting Juniper Networks routers, so patch now
Google Chrome dark mode
Google updates Chrome extension rules to ban affiliate link injection without user action or benefit
Abstract image of robots working in an office environment including creating blueprint of robot arm, making a phone call, and typing on a keyboard
This worrying botnet targets unsecure TP-Link routers - thousands of devices already hacked
Avast cybersecurity
UK cybersecurity sector could be worth £13bn, research shows
An option to add Ambient Music buttons to the iOS 18.4 Control Center.
Apple fixes dangerous zero-day used in attacks against iPhones and iPads
Trump
Hackers are abusing $TRUMP tokens to lure victims in to new phishing scam
Latest in News
Google Gemini Robotics
Gemini just got physical and you should prepare for a robot revolution
Lilo & Stitch Official Trailer
Stitch crashes into earth and steals our hearts with the first trailer for the live-action Lilo & Stitch
GTA 5
GTA Online publisher Take-Two is gunning for a black market that’s basically heaven for cheaters
Y2K cast looking shocked
Y2K has a streaming release date on Max, so you can witness the technology uprising at home
The Discovery+ homepage
Discovery+ just got a big update to its streaming app that makes it more like Max – here are 5 great new features to try
Two Android phones on a green and blue background showing Google Messages
Struggling with slow Google Messages photo transfers? Google says new update will make 'noticeable difference'