A 22-year-old man was sentenced to one year and a day in prison for his role in an ATM jackpotting scheme, becoming the first person to receive a prison sentence for a crime of this nature in the US.
ATM jackpotting isn't by any chance a new thing. The term is used by law enforcement and the IT security industry to describe scenarios where a crook uses various techniques --usually malware-- to make ATMs "spit out cash."
ATM jackpotting attacks first appeared in Russia a few years back, then spread to Europe and Asia, and made their way to Latin America and Mexico last year.
At the start of the year, ATM vendor Diebold Nixdorf sent out a security alert warning US banks that ATM jackpotting had also started appearing in the US, as well.
Days after this alert made headlines in US press, news also broke out that US law enforcement also arrested two groups of ATM jackpotters.
The first arrests took place in Wyoming last October, where law enforcement apprehended a group of four individuals.
Court documents say authorities caught the group after officers smelled marijuana smoke coming out of a parked van during a routine patrol. During a search of the vehicle, police found several backpacks full with cash, and they later connected the group to several reports of local ATMs that have been mysteriously emptied.
But while this group is still tied in the legal system, a first sentence was delivered to a man captured during late January 2018, as part of a second group.
This second group was a two-man team made up of Spanish national Alex Alberto Fajin-Diaz, 31, and Argenys Rodriguez, 21, of Springfield, Massachusetts.
The two were arrested after an ATM jackpotting at Citizens Bank's Cromwell branch. Bank employees reported the ATM hack, and police officers picked up the two in the middle of another ATM jackpotting attack, while the ATM was still dispensing $20 bills.
Officers found over $5,600 in cash in the suspects' car, along with equipment needed to carry out ATM jackpotting attacks.
Both pleaded guilty in June. Rodriguez was sentenced on Wednesday, September 26, while Fajin-Diaz is still waiting for his sentencing hearing. Rodriguez's imprisonment will be followed by two years of supervised release, and the judge also ruled he'll have to pay restitution in the amount of $121,355.38.
But while ATM jackpotting attacks are now commonplace in the US and sentences are expected to flow for subsequent arrests, another type of ATM attack has also crept in.
The US Secret Service has recently issued a warning to financial institutions about ATM wiretapping attacks, also known as ATM eavesdropping.
This type of attack was described at the Kaspersky SAS security conference in 2017 (see after the 12:00-minute mark in the video below) and consists of crooks drilling holes in ATMs in the position of known cables and connectors to place a skimmer inside. The hole is then hidden with a faceplate or a large sticker, and crooks retrieve skimmer after a few days of collecting card data.
Previous and related coverage:
Cyber attacks and malware are one of the biggest threats on the internet. Learn about the different types of malware - and how to avoid falling victim to attacks.
This simple advice will help to protect you against hackers and government surveillance.
Whether you're in the office or on the road, a VPN is still one of the best ways to protect yourself on the big, bad internet.
Fruitfly malware author used port scanning with weak or no passwords to identify potential victims.
The evolving IoT botnet is able to compromise an impressive array of architectures.
The self-proclaimed Apple fan stole roughly 90GB of confidential data from the iPad and iPhone maker.
- FBI warns companies about hackers increasingly abusing RDP connections
- Port of San Diego suffers cyber-attack, second port in a week after Barcelona
- Ex-NSA employee gets 5.5 years in prison for taking home classified info
- Man gets two years in prison for sabotaging US Army servers with 'logic bomb'
- Wendy's faces lawsuit for unlawfully collecting employee fingerprints
- Firefox bug crashes your browser and sometimes your PC
- Mozilla releases Firefox Reality, its web browser for VR
- Tor Browser gets a redesign, switches to new Firefox Quantum engine
- Firefox 62 appears as Mozilla ends support for Windows XP
- Mozilla to block ad trackers on Firefox by default
- California governor signs country's first IoT security law CNET
- Cheat sheet: How to become a cybersecurity pro TechRepublic