New Linux Malware Targeting ATMs for Financial Fraud
Essential information
- Published
- 17/10/2024 09:57
- Modified
- 17/10/2024 10:21
- Tags
- 2024-10-17 atm fastcash financial fraud linux malware transaction
- Related entities
- 12 observables, 1 intrusion sets (apt), 9 techniques (mitre), 1 malware, 1 others
Description
A recent analysis reveals a new variant of the FASTCash malware, designed to compromise financial networks by manipulating payment transactions. Developed by threat actors potentially linked to North Korean hacking groups, this Linux version specifically targets Ubuntu 20.04 systems in ATMs. It intercepts declined magnetic swipe transactions and authorizes them with fraudulent amounts in Turkish Lira, removing security controls like PINs. The malware demonstrates evolving tactics aimed at exploiting vulnerabilities across various operating systems within the financial ecosystem.