BPOI Banner
Scammers Draining Cash Directly From ATMs, Emptying Bank Accounts Without Debit Cards in Sophisticated Scheme: Cybersecurity Researchers Scammers Draining Cash Directly From ATMs, Emptying Bank Accounts Without Debit Cards in Sophisticated Scheme: Cybersecurity Researchers

Scammers Draining Cash Directly From ATMs, Emptying Bank Accounts Without Debit Cards in Sophisticated Scheme: Cybersecurity Researchers

Cybersecurity researchers say scammers have found a sophisticated way to drain bank accounts directly from ATMs – without needing a debit card in hand.

Experts at the cybersecurity software firm ESET say they’ve discovered a dangerous and unprecedented type of malware they’re calling NGate.

To begin the attack, scammers deploy a phishing technique to embed the malicious software in victims’ mobile devices.

“Victims downloaded and installed the malware after being deceived into thinking they were communicating with their bank and that their device was compromised. In reality, the victims had unknowingly compromised their own Android devices by previously downloading and installing an app from a link in a deceptive SMS message about a potential tax return…

After being installed and opened, NGate displays a fake website that asks for the user’s banking information, which is then sent to the attacker’s server.”

Some of the information the NGate banking malware asks for includes the victim’s date of birth, their banking client ID and the PIN code for their banking card.

Once installed and opened, the NGate malware prompts victims to turn on their mobile device’s near-field communication (NFC) feature.

“Then, victims are instructed to place their payment card at the back of their smartphone until the malicious app recognizes the card.

What’s happening behind the scenes is that the NFC data from the victim’s bank card is being sent through a server to the attacker’s Android device. Essentially, this allows the attacker to mimic the victim’s bank card on their own device. This means the attacker can now use this copied card data on their Android device to make payments and withdraw money from ATMs that use NFC…

This is the first time we have seen Android malware with this capability being used in the wild.

If the attackers fail to carry out ATM transactions, their fallback plan is to transfer funds from the bank accounts of their victims to other accounts.

So far, researchers say the scammers have appeared to target banks in the Czech Republic.

“During our investigation, we identified six different NGate apps specifically targeting clients of three banks in Czechia between November 2023 and March 2024.

In a substantial breakthrough, the Czech police apprehended a 22-year-old, who had been stealing money from ATMs in Prague. Upon arrest, the suspect had 160,000 Czech korunas in his possession, an amount equivalent to over 6,000 euros (approximately US$6,500). The nationality of the arrested individual has not been disclosed. According to the Czech police, the money recovered from the suspect was stolen from just the last three victims, so it is likely that the total amount stolen by the threat actor behind this scheme is considerably higher.”

Don’t Miss a Beat – Subscribe to get email alerts delivered directly to your inbox

Check Price Action

Follow us on X, Facebook and Telegram

Surf The Daily Hodl Mix

&nbsp

Disclaimer: Opinions expressed at The Daily Hodl are not investment advice. Investors should do their due diligence before making any high-risk investments in Bitcoin, cryptocurrency or digital assets. Please be advised that your transfers and trades are at your own risk, and any losses you may incur are your responsibility. The Daily Hodl does not recommend the buying or selling of any cryptocurrencies or digital assets, nor is The Daily Hodl an investment advisor. Please note that The Daily Hodl participates in affiliate marketing.

Generated Image: Midjourney



Source link

Mark Emem

https://dailyhodl.com/2024/08/30/scammers-triggering-unauthorized-atm-withdrawals-draining-cash-directly-from-victims-bank-accounts-cybersecurity-researchers/

2024-08-30 17:54:41

bitcoin
Bitcoin (BTC) $ 95,480.58 1.64%
ethereum
Ethereum (ETH) $ 3,283.68 1.32%
tether
Tether (USDT) $ 1.00 0.11%
xrp
XRP (XRP) $ 2.20 1.42%
bnb
BNB (BNB) $ 648.77 1.69%
solana
Solana (SOL) $ 180.98 0.06%
dogecoin
Dogecoin (DOGE) $ 0.312031 3.00%
usd-coin
USDC (USDC) $ 1.00 0.12%
staked-ether
Lido Staked Ether (STETH) $ 3,276.59 1.35%
cardano
Cardano (ADA) $ 0.884148 2.03%
tron
TRON (TRX) $ 0.244363 0.11%
avalanche-2
Avalanche (AVAX) $ 36.55 2.22%
chainlink
Chainlink (LINK) $ 22.15 0.52%
the-open-network
Toncoin (TON) $ 5.40 2.11%
wrapped-steth
Wrapped stETH (WSTETH) $ 3,892.35 1.40%
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 95,197.51 1.90%
shiba-inu
Shiba Inu (SHIB) $ 0.000022 0.90%
sui
Sui (SUI) $ 4.32 0.79%
stellar
Stellar (XLM) $ 0.356813 0.22%
polkadot
Polkadot (DOT) $ 6.84 1.33%
hedera-hashgraph
Hedera (HBAR) $ 0.265661 4.96%
hyperliquid
Hyperliquid (HYPE) $ 29.21 9.19%
weth
WETH (WETH) $ 3,280.25 1.37%
bitcoin-cash
Bitcoin Cash (BCH) $ 446.66 2.21%
leo-token
LEO Token (LEO) $ 9.32 0.00%
uniswap
Uniswap (UNI) $ 13.91 4.37%
pepe
Pepe (PEPE) $ 0.000018 2.86%
litecoin
Litecoin (LTC) $ 99.64 1.30%
wrapped-eeth
Wrapped eETH (WEETH) $ 3,463.20 1.40%
near
NEAR Protocol (NEAR) $ 5.03 0.83%
ethena-usde
Ethena USDe (USDE) $ 0.999986 0.04%
bitget-token
Bitget Token (BGB) $ 4.13 0.41%
usds
USDS (USDS) $ 0.999312 0.10%
aptos
Aptos (APT) $ 9.29 0.90%
internet-computer
Internet Computer (ICP) $ 9.97 0.61%
aave
Aave (AAVE) $ 317.17 6.21%
crypto-com-chain
Cronos (CRO) $ 0.154475 1.71%
polygon-ecosystem-token
POL (ex-MATIC) (POL) $ 0.473691 0.60%
mantle
Mantle (MNT) $ 1.17 0.92%
ethereum-classic
Ethereum Classic (ETC) $ 26.06 0.27%
vechain
VeChain (VET) $ 0.045765 1.53%
render-token
Render (RENDER) $ 7.06 0.13%
whitebit
WhiteBIT Coin (WBT) $ 24.47 0.11%
mantra-dao
MANTRA (OM) $ 3.70 2.01%
monero
Monero (XMR) $ 189.41 3.39%
dai
Dai (DAI) $ 1.00 0.24%
bittensor
Bittensor (TAO) $ 452.87 0.48%
fetch-ai
Artificial Superintelligence Alliance (FET) $ 1.25 0.39%
arbitrum
Arbitrum (ARB) $ 0.747134 0.49%
ethena
Ethena (ENA) $ 1.05 4.49%