Finance

East European ATMs Raided Using KoffeyMaker Toolkit

4 - 11 December 2018

Researchers found that cybercriminals had raided the ATMs of several East European banks between 2017 and 2018 using a toolkit dubbed KoffeyMaker.
Cyber_News_Finance
Researchers found that cybercriminals had raided the ATMs of several East European banks between 2017 and 2018 using a toolkit dubbed KoffeyMaker. The cybercriminals opened the ATM, connected the KoffeyMaker toolkit to the cash dispenser, closed the ATM, and left the crime scene with the laptop inside the ATM. KoffeyMaker consisted of a laptop with ATM dispenser drivers, a patched KDIAG tool, and a USB GPRS modem that provided remote access connection. Subsequently the cybercriminals returned to use the ATM, while an accomplice remotely connected to the toolkit instructed the dispenser to issue cash. 

References:
[1] KoffeyMaker: notebook vs. ATM
 
 

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Solutioning

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence