Jackpotting attack empties ATM in Daet, Camarines Sur


346099133_1295733174691920_893878962805267689_n.jpg Screencapture from the 102.9 Brigada News report -

In a surprising cybercrime incident, hackers emptied an automated teller machine (ATM) in Daet, Camarines Sur. Using a jackpotting technique, hackers successfully forced the ATM to dispense all its cash, resulting in an estimated loss of one million pesos. The incident that happened early this month was first reported by Donde Consuelo of 102.9 Brigada News FM and later shared on the Facebook page of the Philippine IT Cybersecurity Forums by a user named Alex Olesco.

There are several ways where ATM jackpotting can be carried out. One common method is to use a USB device that has been infected with malware. The criminal will insert the USB device into the ATM's USB port, installing the malware on the machine. Once the malware is installed, the criminal can use it to gain control of the ATM's cash dispenser and force it to dispense cash.

Another method of ATM jackpotting is to use a black box. A black box is a small electronic device designed to intercept and modify communication between the ATM and its host computer. When the black box is plugged into the ATM, it will intercept the communication and send commands to the ATM that force it to dispense cash.

Police Captain Angelo Babagay of the PNP Anti Cybercrime Response Team confirmed that the case was a jackpotting incident. In this particular incident, the criminals damaged the outer casing of the ATM to reveal a USB port. A malware-infected USB device was then inserted, effectively taking over the machine's operations and causing it to dispense all its cash, Capt. Babagay said in the 102.9 Brigada News FM report of Donde Consuelo.
In this jackpotting incident, cybercriminals may have exploited the outdated software of an older ATM model and used a combination of hardware and software attacks to gain control of the machine.

This incident has raised significant concerns about the region's security measures for older ATMs. Financial institutions need to reevaluate their security protocols and are urged to regularly update their software, especially in older ATM models, to prevent such attacks.

To counter these types of threats, it is recommended that banks enhance their security measures. This could include implementing tamper-resistant locks, installing security cameras, enforcing robust firewalls, and maintaining up-to-date software.

As of this writing, no arrests have been made in connection with the incident. However, the authorities are committed to bringing the culprits to justice.

This incident serves as a sobering reminder of the evolving threats in the digital age and underscores the importance of maintaining updated software and effective cybersecurity measures. It also highlights the role of the public in reporting suspicious activities around ATMs, which could be instrumental in averting future jackpotting attempts.

Here's the link to the report: https://fb.watch/kveWjtQNFb/?mibextid=Nif5oz