Diebold Nixdorf Vynamic™ Security Suite helps mitigate Jackpotting at the ATM

on "February 27, 2018 11:35 am"

ATM attacks have evolved over the years. With fraudsters being increasingly more creative at developing attacks on terminals, ATM security is now more important than ever before, and unless ATM owners act proactively, they’re going to become the next statistic.

Jackpotting attacks (also called “cash-out” attacks) are on an upward curve. Last year, a jackpotting attack in Taiwan resulted in theft of $2.7 million in cash. Attackers are gaining access to ATM internals and push malware onto the hard-disk via an unauthorized device (E.g.: USB), making the ATM dispense cash. Jackpotting attacks recently seen in North America involved infection of the terminal’s existing hard disk.

IS MY FLEET AT RISK?

Terminals not running a well-configured comprehensive logical/software security solution such as Vynamic™ Security Suite could be at risk of Jackpotting attacks. Vynamic™ Security Suite, with its multi-layered approach, is per default designed to prevent against unauthorized cash-out of the ATM. Vynamic™ Security Hard Disk Encryption offers strong AES 256-bit (military grade) full disk encryption ensuring the hard disk can only be accessed and used in its original secure environment.

YOUR SHIELD AGAINST JACKPOTTING ATTACKS

Jackpotting attacks can take place in a number of ways – getting access to the top chassis of an ATM, drilling holes in the ATM, subsequently attaching unauthorized USB/DVD to the ATM hard disk, pushing “cash-out” malware from a remote location, etc. Vynamic™ Security Hard Disk Encryption protects the confidentiality and integrity of sensitive data when a system is out of operation from unauthorized booting. Vynamic™ Security Hard Disk Encryption also ensures that it is only possible to boot up the operating system on the encrypted ATM’s hard disk either when connected to the enterprise network or when used in its original secure environment, preventing potential Jackpotting attacks. Vynamic™ Security Hard Disk Encryption supports all major vendors legacy/existing, including Solid State Drives (SSD) and can be deployed from a remote location.

COMPREHENSIVE SECURITY FOR YOUR SELF-SERVICE FLEET

Vynamic™ Security Suite delivers a 360° layered software security approach to protecting a multi-vendor, self-service fleet across the logical attack landscape:

  • Day-Zero Malware Protection: Vynamic™ Security Intrusion Protection establishes a ruleset that goes beyond “what is allowed” (i.e., traditional whitelisting), while also identifying behavioral patterns by using modern sandboxing techniques, to protect against known and unknown threats.
  • Operating System Hardening: Did you know that both Windows® 7 & XP have 700+ known vulnerabilities each. Operating System Hardening delivered by Vynamic™ Security Access Protection provides with best practices to optimally disable unnecessary services, helping reduce attack surface. Vynamic™ Security supports both Windows 7 & Windows 10.
  • Disk Encryption: Prevents access to a disk (E.g.: Copying Ransomware/Malware to the terminal’s hard-disk), when the terminal is in an offline state (i.e. OS is not booted).

Experience how Vynamic™ Security from Diebold Nixdorf can better protect your fleet investments from current and future logical attacks. This email address is being protected from spambots. You need JavaScript enabled to view it. so you are protected tomorrow!  As an added measure, sign up for ATM Security Alerts so you know when there’s an issue in your area. 

Diebold Nixdorf has been a League business partner since 2016.