New modus operandi by fraudsters to withdraw money from ATMs


PTI, Apr 18, 2021, 4:18 PM IST

New Delhi: In view of increasing incidents of Man in the Middle (MiTM) attacks on ATMs, all banks have been asked to enhance their safety norms for ATMs through end-to-end encryption in the network, officials said.

In a recent communication to all banks, the central government has said the MiTM attacks have been increasing under which messages sent by ‘ATM Switch’ to ‘ATM Host’ are altered by attackers to withdraw cash fraudulently.

Investigations by security agencies have found that cyber fraud gangs have started adopting a new modus operandi to withdraw money from ATMs, a security official aware of such incidents said.

According to the investigators, the fraudsters first tamper with the network (LAN) cable of the ATM. Declined messages from ‘ATM Switch’ are altered to successful cash withdrawal transaction responses, and subsequently cash is withdrawn from the ATM.

The attacker first inserts a device between the ATM machine and the router or switch in the ATM premises.

This device has the capability to modify the responses back from authorisation host (ATM Switch) which is connected to ATM through network. The attacker then uses restricted cards (or blocked cards) to submit a withdrawal request.

When the ‘ATM Switch’ sends a declined message, the attacker in the middle alters the response to approve the transaction and subsequently withdraws cash, the official

In view of this modus operandi, the banks have been directed to ensure end-to-end encryption in the communication between the ‘ATM Terminal’ or PC and the ‘ATM Switch’, another official said.

Network cables, input/output port within the ATM premises should be concealed and physically secured or protected, the banks have been told.

A similar advisory has also been issued by the Reserve Bank of India.

As per the information reported to and tracked by the Indian Computer Emergency Response Team (CERT-In), altogether 1,59,761 cyber security incidents pertaining to digital banking were reported in 2018, a total of 2,46,514 incidents in 2019 and 2,90,445 incidents were reported in 2020.

These incidents include phishing attacks, network scanning and probing, viruses and website hacking.

There has been a 46 per cent rise in digital transactions in 2019-20 in comparison to 2018-19.

The Ministry of Home Affairs holds regular interactions with state governments and Union Territory administrations and advises them to expedite the disposal of cyber crime incidents, with a special emphasis on those relating to women and children, the official said.

The CERT-In is the national technology arm to combat cyber attacks and guard the Indian cyber space.

Udayavani is now on Telegram. Click here to join our channel and stay updated with the latest news.

Top News

After Yogi’s ‘batenge, katenge’ slogan, PM pitches for unity with ‘Ek hai, toh safe hai’ message

“Coming soon.. 2025”: KL Rahul and Athiya Shetty announce first pregnancy

Mangaluru: Unauthorized bus stops at signals fuel traffic woes and safety concerns

SC notice to Karnataka, DK Shivakumar on CBI plea against withdrawal of consent by state govt

Will remain active in politics till my last breath: JD(S) patriarch & ex-PM Deve Gowda

BJP calls Congress govt ‘laughing stock’ as ‘samosa politics’ heats up in Himachal

Chikkaballapur: Yoga teacher feigns death by holding her breath, escapes murder bid

Related Articles More

UP women’s body proposes men shouldn’t tailor women’s clothes or cut their hair

After Yogi’s ‘batenge, katenge’ slogan, PM pitches for unity with ‘Ek hai, toh safe hai’ message

Bank fraud: ED seizes jewellery, cash worth over Rs 1 cr in raids against Bhopal-based company, directors

No greater feeling than serving those in need: Outgoing CJI D Y Chandrachud

CJI Chandrachud: A legacy of landmark verdicts that shaped society and some controversy too

MUST WATCH

Gho Pooja in Deepavali Festival

Melukote Deepavali

Ganapathi Co-operative Society Ltd

Udayavani Chinnara Banna 2024

Annapoorna Aahar | Food Places In Mysore


Latest Additions

Udupi: Car collides with bike; Rider injured

UP women’s body proposes men shouldn’t tailor women’s clothes or cut their hair

NSE, BSE to be closed on Nov 20 for Maharashtra assembly polls

After Yogi’s ‘batenge, katenge’ slogan, PM pitches for unity with ‘Ek hai, toh safe hai’ message

24/7 CT Scan Facility Inaugurated at Dr. TMA Pai Rotary Hospital, Karkala

Thanks for visiting Udayavani

You seem to have an Ad Blocker on.
To continue reading, please turn it off or whitelist Udayavani.