Two new malware families that attack ATMs have been discovered

Trend Micro reported on a discovery of two new types of malicious software that attacks ATM machines. One of them is being actively spread at the moment, including Russian cybercriminal resources. It is called Cutlet Maker and is used to get big amounts of cash. Its feature is that malware doesn’t technically infect ATM’s system, because it is launched from an external USB drive.

Another finding – Prilex malware – is more interesting. It serves not to steal money from ATMs but to steal card data and client’s PIN codes. Malicious software replaces the screen to enter PIN code. It’s noteworthy that stolen data is soon transferred to a server controlled by cyber criminals. According to Trend Micro experts, this might be the first malicious program that targets ATMs and assumes it is connected to the Internet to transfer the data. It’s also interesting that hackers are not in a hurry to use card’s data and PIN codes to steal money. It seems that they are willing to collect a large array of data and later put it up for sale. This tactic is dangerous because since no unauthorized transactions take place the attack on the ATM may go unnoticed for months.