Definition

ATM jackpotting

TechTarget Contributor

By

TechTarget Contributor

ATM jackpotting is the exploitation of physical and software vulnerabilities in automated banking machines that result in the machines dispensing cash.

With physical access to a machine, ATM jackpotting enables the theft of the machine’s cash reserves, which are not tied to the balance of any one bank account. Thieves who are successful and remain undetected can walk away with all of the machine’s cash.

The culprits use a portable computer to physically connect to the ATM along and use malware to target the machine’s cash dispenser. In this bold public approach, an attacker will often use deception and weaker targets to limit risk, like dressing as service personnel to avoid scrutiny. Stand-alone ATMs in retail and service outlets are more likely targets, away from a bank’s tighter monitoring and security. Older machines, which may not be fully up to date, are also common targets. ATM owners are encouraged to apply all available updates.

A rash of ATM jackpotting broke out in Latin America in 2017. Following that, attacks were seen in Europe, Asia and the United States in 2018. In the United States, the attacks resulted in the theft of over a million dollars. U.S. intelligence agencies warned about the threat, noting that guides outlining the process have been discovered on the dark web.

This was last updated in March 2018

Continue Reading About ATM jackpotting

Securing global ATM networks as attacks in M2M environments rise

Everything You Need to Know About ‘Jackpotting,’ a New Cyber Attack Targeting ATMs

ATMitch malware: Can fileless ATM malware be stopped?

Hackers use ATM jackpotting technique to steal $1M in US

Hackers bring ATM 'jackpotting' to the U.S.

local area network (LAN)
A local area network (LAN) is a group of computers and peripheral devices that are connected together within a distinct ...
TCP/IP
TCP/IP stands for Transmission Control Protocol/Internet Protocol and is a suite of communication protocols used to interconnect ...
firewall as a service (FWaaS)
Firewall as a service (FWaaS), also known as a cloud firewall, is a service that provides cloud-based network traffic analysis ...

identity management (ID management)
Identity management (ID management) is the organizational process for ensuring individuals have the appropriate access to ...
fraud detection
Fraud detection is a set of activities undertaken to prevent money or property from being obtained through false pretenses.
single sign-on (SSO)
Single sign-on (SSO) is a session and user authentication service that permits a user to use one set of login credentials -- for ...

CIO

IT budget
IT budget is the amount of money spent on an organization's information technology systems and services. It includes compensation...
project scope
Project scope is the part of project planning that involves determining and documenting a list of specific project goals, ...
core competencies
For any organization, its core competencies refer to the capabilities, knowledge, skills and resources that constitute its '...

recruitment management system (RMS)
A recruitment management system (RMS) is a set of tools designed to manage the employee recruiting and hiring process. It might ...
core HR (core human resources)
Core HR (core human resources) is an umbrella term that refers to the basic tasks and functions of an HR department as it manages...
HR service delivery
HR service delivery is a term used to explain how an organization's human resources department offers services to and interacts ...

Customer Experience

martech (marketing technology)
Martech (marketing technology) refers to the integration of software tools, platforms, and applications designed to streamline ...
transactional marketing
Transactional marketing is a business strategy that focuses on single, point-of-sale transactions.
customer profiling
Customer profiling is the detailed and systematic process of constructing a clear portrait of a company's ideal customer by ...

Close