During times of crisis, crime has a tendency to increase. This is especially true for locations known to carry large quantities of cash – like ATMs. The COVID-19 pandemic has been no different. Mass unemployment in a country where 78% of worker live paycheck-to-paycheck is an enticement for criminal activity.
ATMs create a high level of convenience for bank and credit union account holders, especially in times of crisis. Prior to COVID-19, ATM crime was already on the rise. In the first few months of 2020, for example, we saw an uptick in ATM thefts in St. Louis, Chicago, Baltimore and other major cities, as well as the bombing of ATMs in Florida.
However, criminals can easily see ATMs as unattended cash vaults with both physical and electronic vulnerabilities. Enterprising thieves may take note of the computer component of a machine and use malware and other network means to access the cash inside. Those lacking technical knowledge might resort to more physical attacks to get at the cash inside.
Here are three ways financial institutions can help deter a variety of ATM attacks during the COVID-19 pandemic and beyond.
Dye packs are widely used in many European countries, which have been dealing with increased physical attacks for much longer than U.S. financial institutions. According to Patrice Rullier, managing director for Oberthur, at his session on physical ATM attacks at the 2019 ATMIA Conference, dye packs stand out as a tactic that has successfully been used to decrease ATM attacks in Europe and other parts of the world.
The use of dye packs renders the notes unusable. As a result, the dyed money is often left behind and found with the tampered machine. In many cases, the effectiveness of newer dye pack systems has become so well-known that posted warnings of their presence on a machine can help deter criminals.
Should a machine be breached, the dyed cash can assist with the capture of those individuals responsible for the attack on the machine. In most cases, recovered bank notes can be traded in for replacement funds, reducing the cash lost from a criminal incident.
Lock down ATM software
The easiest way for a criminal to avoid the dye-pack trap is to gain access to the back-end system running the ATM. Remote hacking attempts rely gaining network access to the ATM backend through a discoverable network. Direct, on-site attacks utilize an exposed USB or other port to plug in an additional device. No matter the strategy, experts agree locking down the ATM software using these steps will help reduce overall risk to any machine.
- Remove software that is not necessary for ATM functionality. In cases where removal is not possible, use security tools to restrict the software.
- Create a whitelist for application control. Avoid built-in operating system services and applications which are not essential to ATM operation.
- Limit the ability to modify registry values, run arbitrary programs and edit files.
- Use a software or hardware VPN client located inside the ATM for network access
- Implement a firewall allowing remote access to only the services needed for ATM operation and only allow remote access from whitelisted administrator addresses.
- Keep software up to date with the latest versions and patches.
- If you have ATMs currently sitting in branches or locations which are closed to the public due to the pandemic, now may be a good time to empty them of cash and temporarily disconnect them from the network to avoid any additional risk.
Remote monitoring tools such as photographic cameras, CCTV, and video on and around the ATM can help deter criminals and provide identifying information in the event an incident occurs. Even clothing such as face masks used to obscure features can become an identifier if pictures and footage are provided to authorities promptly. Often, the mere presence of surveillance and notifications of monitoring technology can be enough to deter criminal behavior.
With reduced hours, branch closings, and wide-spread financial uncertainty, access to remote banking alternatives such as ATMs is more of a concern now, than ever before. While not a complete list of available security measures, these strategies are a good start for any financial institution to protect themselves and their account holders in these trying times.
Fuente: Newsletter Atefi.org
Para más información visitá www.atefi.org o seguí a Atefi por Twitter y Linkedin.