The development of this case was conducted by operatives from the police and the FSB. The security forces managed to track down two 30-year-old Chelyabinsk residents who had been stealing money from people's mobile phones and bank cards for two years. Hackers found out about decent amounts on the accounts of their victims in a fairly simple way: all the victims announced a fundraiser for the treatment of loved ones. To turn the scam, the defendants set up such a scheme.
They forged a power of attorney on behalf of the owner of the SIM card.
Then they went to the salon, changed the SIM card and immediately transferred the money to themselves. Sometimes the person's number was connected to the "mobile bank".
Then the scammers took money straight from the accounts. “They had their own sources in various banking and telecommunications companies,” the press service of the Main Directorate of the Ministry of Internal Affairs of Russia for the Chelyabinsk region noted.
Site search
In total, they managed to steal 1 million 190 thousand rubles. For fraud in the field of computer information, Chelyabinsk residents face up to ten years in prison.
found that the ATM in the room was badly damaged. They called the police. As it turned out, unknown people entered the building at night, opened the ATM and pulled out 1.2 million rubles. - Currently, a criminal case has been initiated on this fact under the article “Theft on an especially large scale”. The search for intruders is underway, all the circumstances of the incident are being established. - told the site “First. . The police stopped the crime, but managed to detain only one of the suspects.
There was almost a major theft in the village of Mezhozerny.
Four masked men climbed into the store and tried to open the Sberbank ATM, which contained 9.5 million rubles. However, the police arrived at the scene in a timely manner, but they did not give.
. "Magnet". Several people broke into the store to open the ATM.
The number of cash thefts from ATMs is growing at an alarming rate
Recently, thefts from ATMs in Europe have been growing at an alarming rate.
The technical capabilities of criminals are expanding, as a result, in 2008 the number of kidnappings from ATMs increased by 149%, and the total cost of such crimes in Europe is about half a billion euros, the European Information Security Agency (ENISA) reported. ENISA published a special report
"Theft from ATMs: a look at the situation in Europe and the golden rules of prevention"
In which he urges consumers to take more careful precautions to prevent theft from bank cards.
In the Chelyabinsk region, an investigation into the criminal case of cyber-fraudsters who “cleaned” donation accounts for seriously ill children has been completed.
Over the past year, the number of ATMs in Europe has grown by 6%, bringing the total number to 400,000, the report says. Many of these ATMs are located in remote locations such as small local department stores, airports, and gas stations.
For six months, they managed to steal more than a million rubles, reported on Thursday in the Main Directorate of the Ministry of Internal Affairs of the region.
“Two South Urals residents accused of committing fraud in the field of computer information will appear before the court,” said Anzhelika Chirkova, head of the press service of the police headquarters of the region. - It was established that from December 2013 to July 2014 they committed more than a dozen thefts from bank cards and SIM cards of parents of seriously ill children, which received donations from the public. The total damage from the illegal actions of hackers amounted to one million 190 thousand rubles.
As a rule, accounts connected to Mobile Bank became the object of fraudulent transactions.
Stealing money from an ATM
As practice shows, the simpler, the more effective.
Below I give photographs of how, with the help of an ordinary adhesive tape and a simple metal bar, you can delay the issuance of banknotes from the dispenser. While you walk around and figure out what's the matter, your money will pass into other skillful hands. There was an accompanying text for this material, but since I am not strong in the languages \u200b\u200bof the adjacent CIS countries, and the option of an online translator leaves much to be desired, the retrospectively received review will sound like this: Use of technical means such as readers, portable video cameras aimed at obtaining data about the user's card and the PIN code becomes irrelevant thing.
There are much simpler solutions, and the more unexpected they are, the more effective. In fact, what do you think when the ATM does not dispense money?
How to steal money?
Theft of funds on the territory of the Russian Federation is a criminal offense, depending on the severity of which, punishment is provided under Article 159 of the Criminal Code of the Russian Federation in the form of fines from 80 to 200 thousand rubles.
You go to solve the problem with its owner.
rubles, forced labor for a term of up to 2 years or imprisonment for a term of one to 6 years. Despite the severity of the legislation regarding these crimes, theft and fraud still occur. In order not to become a victim of scammers and thieves, we suggest that you familiarize yourself with the techniques that they use to appropriate other people's money.
Today, funds can be of two types: cash and non-cash. Considering the methods of theft of funds, let's start with the theft of non-cash funds.
You need to be especially careful when making purchases on the Internet, since modern technologies allow attackers to use spyware and duplicate sites through which they obtain personal information on any card.
Stealing money from an ATM
The Sarov police officers discovered the loss of money from an ATM, forgotten in the bill acceptor of one of the bank's clients. The man found on the video will be charged under the article "theft", because he managed to spend the money taken.
According to the press service of the Internal Affairs Directorate, on February 2, 2014, a 35-year-old woman from Sarov applied to the duty unit of the Internal Affairs Directorate with a request to find her money left at an ATM the day before. During the investigation, it turned out that a day earlier, citizen P.
came to the store "Plaza", located on the street. Moskovskaya and decided to withdraw funds in the amount of 4,000 rubles for personal needs. However, after the ATM of Sberbank of Russia gave her cash, she took the SB card, and forgot to take the money from the bill acceptor.
I remembered it only the next day. Police officers carried out a number of operational-search activities related, in particular, to inquiries to Sberbank about the recipient of the money.
And the ATMs keep rattling :(
On Tuesday night, an unknown criminal opened an ATM installed in a store at 8 Narodnaya Street in St. Petersburg and stole 2.2 million rubles from it. The attacker entered the store, picking up the keys to the doors.
Then the criminal drilled out the lock of the back wall of the ATM belonging to CJSC Promsvyazbank and stole 2.2 million rubles, according to the Academy of Sciences "Operational Cover".
According to available information, the store is not guarded.
The alarm signal from the ATM was received by the bank's security console at 6.30 am.
By the time the police arrived, the perpetrator had fled.
According to law enforcement agencies, the attacker was clearly aware of the lack of security and alarms in the store itself. He slowly smoked a few cigarettes, and finished with the ATM in a matter of minutes.
Stealing money from an ATM
Visitors to the legal consultation asked 67 questions on the topic "".
On average, the answer to a question appears in 15 minutes, and for a question, we guarantee at least two answers, which will begin to arrive within 5 minutes! Good evening. I am a retailer of jewelry. I hired a seller on March 28, 2013. For March and April, I paid the salary as agreed.
The salary is paid from 01.06.2013 to 06.01.2013 Theft of money from the cash desk of the enterprise by collusion, they confessed, they wrote a paper that they would return the money. An audit was scheduled, they demand money for its work. Is this correct?
03/27/2014 Theft of money from a bag, surrender and full refund of funds.
The victim wrote that she had no complaints. What to expect the decision of the court? 02/03/2015 I work as a bartender in one cafe, at the end of the shift, as usual, I did the calculation of the proceeds and put all the money in the cashier, since we don’t have a safe!
Despite the fact that theft is a criminal offense and you can get a considerable prison term, this does not stop criminals.
They come up with new ways of being citizens. To know what methods of money withdrawal are used by attackers most often and how to protect your savings, read on.
How is money stolen from ATMs?
Thieves are very creative and use many methods to steal your money. But the most common are two types of illegal withdrawal of funds from payment terminals:
- skimming
A special device is installed on the ATM card reader, which reads information from the magnetic strip of a plastic card. Attackers can only use it.
- "Lebanese noose"
To carry out this scam, a kind of “pocket” is glued to the terminal, where the money you withdraw goes. The ATM signals the issuance of funds, but in fact you do not receive them. As soon as you step away from the device to complain to the bank or call the support service, the scammers calmly pull out the money and leave.
Most often, money is stolen from an ATM using special devices that read information from the card.
Bank customers
To steal funds from plastic cards, fraudsters often use different devices:
- Additional keyboard
A special overlay is attached to the real ATM keyboard, which fixes the combinations of the entered PIN codes.
- miniature video camera
It is fixed next to the ATM keyboard so that you can see which numbers of the pin code you are typing.
- "Pockets" for banknotes
This has already been discussed above. These are ordinary plastic envelopes that close the slot for issuing money.
- Fake ATMs
Installed in crowded places to obtain information about the cards of future victims. Naturally, they don't work.
- Malware
Payment terminals become infected with a virus that transmits to scammers information about all used bank cards.
If you see a suspicious device on an ATM, do not use it and call technical support.
Now online thefts are also actively developing - hacking bank accounts without using physical impact.
To gain access to your e-wallets and accounts, criminals do not even need to leave their homes. They use the following methods:
- Phishing
Attackers send a letter or SMS message with a virus to your e-mail. It comes on behalf of a well-known brand or the bank itself (payment system). As soon as you open the email, you will "infect" your PC with malware. It will collect information about your passwords, logins, payment card numbers, and then transfer the data to the sender or automatically transfer money from your wallets to the details of the hacker.
- Winlocker implementation
Winlocker is a malicious computer program that blocks the Windows operating system. In this case, a notification will appear on your screen stating that the computer cannot be operated. To unlock it, you must enter a special password. Of course, for it you need to pay a certain amount to the specified number. After transferring funds, scammers send a code, but the problem may arise again.
The thefts from bank cards and electronic wallets committed via the Internet are becoming increasingly popular among fraudsters.
Bank
A new way to instantly withdraw money from an ATM is called the drilled box. Everything is ingenious and simple - criminals drill a hole in an ATM and connect a special device (tire). It is she who pumps funds out of the terminal.
However, independent manufacturers have invented a device that controls the connection to the ATM information bus and helps prevent such attacks. When connected externally, the ATM simply stops responding to commands from scammers.
Most modern terminals are well protected from hacking and viruses.
Recently, many ATMs in our country came under attack by a new dangerous virus. First, it hacks into the bank's network outer loop and the device administration server in a closed network, and then attacks the ATMs directly.
To prevent such incidents, it is necessary to implement specialized information security programs and engage third-party contractors to reduce the risk of security gaps.
Problems with the withdrawal of funds arise from banks that have not updated the software to the required level.
New ways to steal money from bank cards
Thieves never stop there. Just recently, several new ways to steal money from ATMs have been discovered.
Here are some examples:
- "Cutting"
Not so long ago, scammers stole several million rubles by cutting and gluing bills of different denominations together. The "updated" money was credited to the attackers' bank cards through terminals. After cashing out the funds, the criminals again made a money cycle.
- "Guiding Thread"
Another swindler attached a strong thread to a five-thousandth bill and, using this simple device, robbed an ATM for 200 thousand rubles. He put the banknote into the terminal many times, and after the funds were credited to his account, he pulled it back out.
- "Own course"
There is also a known case when hackers infiltrated the computer system of an ATM and "raised" the dollar to 1.5 thousand rubles. They exchanged 800 dollars for 1.2 million rubles.
Kaspersky Lab experts recently uncovered another interesting scheme. Employees of financial institutions began to complain about the arbitrary issuance of money to people who do not even try to withdraw them.
During the check, a malicious program was found on computers connected to terminals. The hackers gained access to the computers of bank employees, after which they transferred money to their accounts or cashed it out through ATMs. More than 30 banks around the world suffered from their actions, but they still have not been found.
The novelties in the world of fraudulent devices also include shimmers - flexible metal plates thinner than a human hair. They are inserted into the ATM card reader and reads data from plastic cards. This method can be called a modernized skimming.
How to protect your funds from theft?
To protect your savings as much as possible, you need to follow a few simple rules:
- try to withdraw cash from ATMs located in financial institutions, and not in shops or shopping centers;
- inspect the terminal for suspicious devices;
- if the ATM does not see your card or does not give it away after the transaction is completed, do not leave the terminal and call the support service;
- activate SMS notifications to be aware of changes in your account. If you did not make any transactions, and the money was debited, immediately call the bank and block the card.
Be vigilant, and then you will not fall into the "paws" of scammers.
And if trouble does occur, do not sit idly by - contact a competent lawyer. He will tell you what can be done to return the stolen funds and punish the attackers.
Robbers attacked 4,000 ATMs in Russia last year. The losses of banks from such attacks, according to the Informzaschita company, ranged from 2.5 billion rubles to 7 billion. This year, experts believe, the number of attacks will grow to 5 thousand, and the losses will increase accordingly, Izvestia writes. At the same time, banks do not plan to spend more on protecting devices. On the contrary, from January to June of this year, they spent 9% less than a year ago.
How criminals work with ATMs, and why it is still not possible to stop this type of robbery all over the world (more than 26.5 thousand devices were affected in Europe in 2016), MIR 24 understood.
Destroy the ATM
All attacks are divided into physical and logical, and in Russia, nine out of ten attacks were of a physical nature. The easiest and most affordable way is to break open the door of the room, pull the ATM out of the wall with the help of a car, load it into the body and then open it in a safe place. And in one where the police will not be able to track the device using the GPS tracker installed inside. So, for example, in September, six unknown people stole an ATM, which contained about 3.6 million rubles, from a shopping center in New Moscow.
Alternatively, in some models of ATMs, criminals attach a cable to the banknote dispensing window and, if it is built into the safe, tear off the lid of the safe, after which they leave with the money.
All of the following methods are technically more difficult. For example, it is impossible to gut an ATM on the spot without special skills. One day, the police solved the crime in hot pursuit and found the criminals who stole the ATM. It turned out that they did not have enough 16 hours to open the safe installed inside with the help of a grinder. If you use gas-plasma or plasma cutting, then, firstly, an alarm will go off (temperature increase) and a private security company will arrive, and secondly, there may be a layer of concrete in the safe.
Although in 2010, Moscow law enforcement officers with great difficulty managed to detain a gang of intruders who opened ATMs literally like tin cans - it took them less than a minute.
Of course, the ATM can be blown up. However, after the explosives, attackers often leave with nothing. It is worth not calculating a little, and either the device costs whole and unharmed, or they are left alone from the money.
An advanced version of this method was an explosion with the help, which is pumped into the safe, for example, through the hole for issuing banknotes. Then the temperature does not rise, and the explosion knocks out the door of the safe.
Sensors remain the main danger for criminals when opening the device in place. These are temperature sensors, and vibration sensors, and gas analyzers, and alarms for damage to various parts of the ATM. If something works at the beginning of the autopsy, then the attacker will be taken "lukewarm".
Negotiate with an ATM
Another method that is gaining popularity is the Drilled Box, a cross between a physical and a logical attack. Criminals drill an ATM in a place they know, connect to the control center and break into it already. The controlled device independently, without dust and noise, gives the criminals all the money in it. To fix the vulnerability, for example, it is necessary to strengthen the protection in the place where the hole is made, but updating the ATM fleet is not a quick business.
Attackers steal small amounts using the so-called cash trapping. The main principle is to disrupt the work of the shutter, the mechanism that gives out money. In this case, the cardholder tries to withdraw money, but the bills get stuck and the operation is cancelled. He sees the inscription that the operation is interrupted, and goes to another place. There is no debiting of money from his card. And the scammers, when the victim left the place, come up and take out banknotes.
Sometimes a stolen or compromised card is used in cache trapping. Having such a card, first the criminals set up a shutter, and then withdraw as much money as they can. Just in case, let's explain that as a way to "earn" on your card, this will not work, because banks always receive information about such operations. And if you still manage to withdraw money, then avoiding responsibility is unlikely.
Steal a card
Copying a card and picking up a pin code is a technically complex, but at the same time, safe way for an attacker. A so-called skimmer is installed on the card reader or card reader at the entrance door to the service area - a device with a reading magnetic head. It either accumulates information about the cards or transmits it over the air. They also often have a video camera installed that allows you to see the pin code.
Note that skimmers, if you are prepared, are not so difficult to notice - the devices themselves are quite large. Recently, however, criminals are increasingly using an improved method - shimming. It uses a thin and flexible gasket that is inserted into the card reader and does not interfere with the introduction of media into them.
It is impossible for ordinary people to notice such devices. But the method has its downsides. First, it is a really expensive and complex technology. Secondly, you still have to find out the pin code somehow. That is, overlays on the keyboard or video cameras are used, which are already possible to recognize.
After receiving secret information, scammers make fake cards and withdraw money from them. As a rule, this takes place in another country in order to avoid liability.
A less common, albeit highly original, method is the installation of fake ATMs. Citizens try to use them, see an error and go to another ATM, not realizing that they have just opened their bank card.
Recall that no copying threatens those who use cards with a chip. It is not yet possible to read information from him, at least there is no information about such cases.
computer hacking
As with all computer security, hackers who gain access to both ATMs and devices that are on the same network with them remain a serious problem.
For example, in February 2015, it became known about an attack on 30 banks that lost up to $ 1 billion in total. The victims turned to specialists after they noticed that ATMs began to issue banknotes just like that, without any action from the outside. As it turned out, the hackers hacked into the computers of bank employees using emails with attachments, then gave commands to ATMs through the local network.
But these are big scams. And if you return to the ground, then in the event of inadequate protection, hackers can gain control of the ATM even through a normal network port, access to which is outside the ATM. By connecting the device to a fake processing center, an attacker will be able to insert any card, enter any pin code and withdraw all the money in the ATM. 
However, you can go further: every ATM can be turned into a skimmer with the help of a virus. The infected machine is activated after entering a special pin code on a special card, and then, to cover the tracks, the following code destroys all traces of the malware. Data of all used cards get to scammers
Each such case is a serious puncture in the field of security, and most banks try to prevent these episodes in advance. But, as already mentioned, it is still far from a full-fledged renewal of the ATM network. Somewhere the banking network may not be segmented, somewhere the ATM does not provide authentication for data exchange, somewhere the white lists of applications that are allowed to run are not configured.
Why it works
First of all, because the banks spending on full-fledged protection, as it turns out, is still less than possible losses. And it is likely that it will never be possible to completely get rid of this type of crime.
A large network of ATMs is an advantage for customers, so banks often install them in places that are not very safe. Or they save on signaling, hoping for, which is sometimes easy to bypass. In the end, sometimes security is just one employee of the private security company, which can be attacked and neutralized. It is also not uncommon for criminals to break into bank branches. This is because the management buys less fortified devices there and thus lures criminals.
Reliable protection would be special paint cassettes inside the safe, which make it pointless to open it. After all, dirty money still cannot be used or exchanged. However, this is too expensive, and such cassettes are widely used only in cash-in-transit vehicles when transporting large amounts of money.
Maxim Konnov
Theft is a criminal offence. But this does not stop the attackers who continue to commit their criminal acts. They are regularly looking for new ways to steal funds from bank cards. To understand exactly how criminals operate, we strongly recommend that you read the information below.
How are funds stolen from ATMs?
Thieves very often show miracles of ingenuity, using a variety of ways, just to get your money. The following methods are the most popular:
- skimming. The bottom line is that special devices are installed on card readers that allow you to redirect data received from a magnetic strip to your plastic card. All that remains for the thieves is to use the information received at their discretion;
- "Lebanese loop". To pull off this scam, a special “pocket” is glued to the terminals, into which your funds fall. The device reports that the funds have been issued, but in fact the cardholder will not receive them. Turning away for a minute to go to the bank branch or contact the support staff, the attackers quickly pull out this pocket and leave the crime scene.
Note! Most often, funds from ATMs are stolen using specialized devices designed to read data from a bank card.
Theft from cardholders
To steal money from plastic cards, thieves prefer to use various homemade products:
- additional keyboard for input. A specialized overlay is installed on a regular plate with keys, through which the pin codes entered by the owners are fixed;
- small camera. It is installed near the ATM keyboard so that the secret code gets into view;
- « pockets". We mentioned them earlier. This is a simple plastic envelope, through which the cash-out compartment is closed;
- fake ATMs. Of course, they do not function, and the bank has nothing to do with them. As a rule, they are installed in crowded places so that as many people as possible pass information to scammers;
- malware. The terminal is deliberately infected with a virus, through which fraudsters quickly and anonymously obtain information about pin codes.
Remember! If there is a suspicious device in front of you on an ATM, refrain from using it. It is strongly recommended that you contact your bank's customer service representatives to have the appropriate personnel come to check.
Recently, thefts committed online have become very popular. Bank accounts are hacked without any physical effort. To gain access to personal electronic accounts and wallets, criminals do not have to leave their homes. The following methods are used for this:
- winlocker. It is a type of fraudulent software, the peculiarity of which is to block the operating system of a personal computer. A notification appears on the display that requires you to unlock your computer by entering a special code. To get it, you need to transfer a certain monetary compensation to the specified number. As soon as the money is transferred, the password comes in response. But not everything is so simple. On the one hand, attackers do not always send codes, on the other hand, there is no guarantee that the problem will not happen again;
- phishing. The principle is as follows: scammers conduct mass mailings to tens of thousands of email addresses. The message includes malicious code. Almost immediately after it is opened, the OS is instantly infected with malicious code. It automatically collects all saved logins and passwords, or instantly transfers data about your wallets.
Important! The theft from bank cards and electronic wallets, which is carried out through the Internet, is becoming more and more popular.
Bank
The ingenuity of attackers has no limits. Recently, a method called “drilled box” has been updated. The principle is extremely simple - a small inconspicuous hole is drilled in the ATM, through which wires are output for synchronization with the main "bus". She is responsible for issuing the balance sheet.
Independent developers have created a device that allows you to always control the transfer of data through the bus, thereby preventing changes in the information transmitted over it. If you connect to an ATM from outside, it will stop fully responding to all required commands.
Relatively recently, the domestic banking system has suffered from the impact of a new high-risk virus. The bottom line is that he first hacks the external part of the electronic system, infiltrating the administrative server. Further, it automatically attacks those ATMs that the scammers need.
To prevent such incidents, the introduction of specialized software responsible for information security is required. You will also need the help of third-party developers to more thoroughly check the system.
If trouble has not bypassed you, we strongly recommend that you promptly seek help from a qualified lawyer.
Fraudsters come up with new ways to steal money from bank cards every day. Surveillance cameras reduce the interest of criminals in ATMs, but attackers are looking for ways around.
Theft on the territory of the Russian Federation is a criminally punishable act, depending on the severity, punishment can be applied under various parts of Art. 158 of the Criminal Code of the Russian Federation: imprisonment from one to 10 years, forced labor, a fine of 80 to one million rubles.
Is ATM security questionable?
There are two types of theft of money from payment terminals:
- skimming - an overlay on a card reader for reading a pin code;
- "Lebanese loop" - sealing the pocket for dispensing money, in which the ATM reports the dispensing of money, while the banknotes remain inside the machine. The victim walks away from the device to complain to a facility worker or call support, and the scammer removes the sticky bar along with the money and leaves the scene.
Law enforcement officers of the capital interrupted a series of robberies, when the criminals acted as follows: they blew up ATMs or wound a chain around them and took them away to open them in an unknown place. This method turned out to be effective, despite the primitiveness.
Stealing money from ATMs: the old ways
An old way of stealing money from ATMs is to steal the card after the victim withdraws the funds. The method is also considered traditional when an attacker opens the device or takes cash, taking the device from a bank or supermarket.
Udmurt attackers installed several fake ATMs of a non-existent credit institution in Moscow, the Moscow region and Sochi. Citizens who tried to use payment terminals to perform monetary transactions later turned to the police with statements about the theft of money. Criminals got hold of passwords for more than a thousand bank cards.
New ways to steal money
Fraudsters in the Astrakhan region stole 4 million rubles by cutting and gluing banknotes: six five-thousandth notes and one thousandth. Each bill was cut into 6 parts and glued together so that a five-thousandth was obtained, consisting of 1/6 of a thousandth. Updated, but insolvent money was credited to cards through ATMs. After cashing out the funds, the criminals could again make a cash cycle.
The Saratov swindler pulled out money from the payment terminal by means of a strong thread attached to a five thousandth banknote. He dropped the banknote many times into the terminal for crediting to the account and retrieved it back. So, the criminal pulled out 200 thousand rubles.
Crackers from Ufa penetrated the computer system of an ATM, changed the service code, with the help of which the dollar exchange rate was "raised" to 1.5 thousand rubles, then exchanged 800 dollars for 1.2 million rubles. One of the perpetrators was arrested by the police.
Kaspersky Lab specialists uncovered yet another money theft scheme. Representatives of financial organizations complained that ATMs arbitrarily dispensed money to people who did nothing. Based on the results of the verification activities, it turned out that no virus programs were installed on the devices, but the virus was found in a computer connected to a single network with ATMs. The hackers gained access to employees' computers, then transferred money through legal methods of withdrawing funds using the SWIFT system or cashed out through ATMs. The hackers have not yet been caught, but more than 30 financial institutions in Russia, China, Canada, Ukraine and the United States have suffered from their actions. Some thefts amounted to $10 million, and the total financial losses of the affected banks approached a billion dollars.
Sberbank of Russia announced a new method of stealing money from ATMs, called the drilled box. It can only be used in certain types of devices. A small hole is drilled in the case of the payment terminal, a special bus is connected to pump out money. Despite the disclosure of this scam, the ATM manufacturer does not respond to the problem.
Note!
The novelties of fraudulent devices include shimmers, produced openly and in bulk, they are thinner than a human hair. The technology allows you to steal the norm of accounts, pin codes, and other information through an ATM. A flexible metal plate is inserted into the card reader and reads data from the cards. This method can be called advanced skimming.
From a bank customer's card
In order to steal money from a bank card, fraudsters often use:
- counterfeit keyboard - a special overlay is installed on the ATM keyboard. She remembers all the buttons pressed, including the pin code;
- a tiny video camera - installed by fraudsters near or above the keyboard for the same purpose: to find out the PIN code and take possession of the card for withdrawing funds;
- false receivers of money - plastic envelopes covering the slot of the ATM;
- fake ATM - installed by criminals in crowded places to collect information about the cards of future victims;
- virus software - an innovative way to steal money when payment terminals become infected with viruses. As a result, fraudulent programs transmit technical information and PIN codes of customers' plastic cards.
Today, another type of theft is actively developing - account hacking. Criminals gain access to electronic online banking services and electronic wallets without leaving home. Phishing is a method of fraud, the purpose of which is to take possession of other people's money by gaining access to confidential information - card number, password, login. For fraud, emails, SMS messages from well-known brands and the banks and payment systems themselves are used, which contain a link to a site that looks like the original web resource. When opening a letter, a network user downloads a virus program to the computer that collects information about passwords, logins, payment card numbers and returns to the sender of the program or automatically starts transferring money from all available wallets to the details of the fraudster.
One type of card scam is vinlocker, a piece of malware that blocks or makes it harder for the Windows operating system to work. A message appears on the victim's screen stating that the operation of the computer is impossible until a special password is entered, for which it is necessary to send a certain amount of money to the attackers. After receiving the money, the criminals send a code that permanently or temporarily removes the restrictions, but the problem may arise again.
Note!
It is also possible that after receiving the money, scammers steal information about the card number, pin code, CVV and withdraw all the money available on the account, card, and wallet.
Bank
The method of instant withdrawal of money from an ATM is called a drilled box. Fraudsters drill a hole in a particular configuration of ATMs and plug in the bus, pumping money out instantly. Modern ATMs are quite well protected from hacking and viruses, it is necessary to put them into a safe mode when the dispenser and the computer exchange information through cryptographic protocols. Then the fraudster will not be able to do anything with the information bus of the device.
Certain problems arise for banks that have not updated the software to the required level, which operate without a protected mode. Some credit institutions require a hardware upgrade.
Independent manufacturers have long invented a device that allows you to protect yourself from fraud attacks, because it controls the connection to the ATM information bus. When connected externally, the ATM dispenser turns off, it stops responding to fraudsters' commands. Banks are making a lot of efforts to prevent such crimes.
In 2017, Russian ATMs were attacked by a new dangerous virus - a contactless hacking of the external contour of the bank's network, then a device administration server in a closed network and a direct attack on ATMs. Experts explain that reliable protection is necessary, otherwise the network of credit institutions will be compromised. It is necessary to implement specialized information security programs, attract third-party contractors to reduce the risk of security gaps.
If the fraudsters have obtained the details of a bank card, it is considered compromised, and the data of its owner, logins and passwords for accessing the Internet bank or mobile application become known to the attackers.
How to protect yourself from theft?
- withdraw money from ATMs located inside branches, avoid supermarket areas where there are a lot of people and crowds of gunmen;
- if the ATM does not see the card you have inserted or does not return it, call the support service immediately and block the card. Tell the employee the phone number so that they can check it;
- use SMS-informing about the movements on the card account. If you have not made any transaction with the money in your account, immediately inform the bank;
- in case of special problems, after blocking the card, you need to come to the branch to write a statement of disagreement with the transaction.
More than 80,000 sites distribute malicious browser extensions that steal bank card data. Be vigilant and do not click on suspicious links.