Fraudsters take money out of fraud by making fraudulent changes in the message sent by the ATM Switch to the ATM host..
In the midst of increasing cyber attacks, banks have been asked to strengthen security norms regarding ATM (Automated Teller Machine). This instruction has been given to the banks amidst increasing cases of wrongful withdrawal of money in the middle of the man-in-the-middle (MiTM) through the technology involved in the communication process between the two parties at the ATM. Banks have been directed to ensure ‘end-to-end encryption’. That is, whatever message is there, only two parties connected to it can read it.
The Central Government has recently said in a letter to all banks that MiTM attacks are increasing. In this, the attacker withdraws money by fraud by making changes in the message sent by the ATM Switch to the ATM host. This is a type of cyber attack.
Start a new way to withdraw money from ATM
A security officer associated with the case said that the investigation of security agencies has found that the cyber fraud gang has started adopting a new way to withdraw money from ATMs.
According to investigators, fraudsters first tamper with ATM network (LAN) cable. Rejected messages from the ATM switch are converted into successful cash withdrawal transaction responses, and cash is subsequently withdrawn from the ATM.
This is how a stolen card is stolen
Attackers first place a device between the ATM machine and the router or switch in the ATM premises. This device has the ability to modify responses back to the ‘ATM switch’ which is connected to the ATM through the network. The attacker then uses a restricted card (or blocked card) to submit a withdrawal request.
When the ‘ATM Switch’ sends the rejected message, the attacker intercepts the response so that the transaction is cleared and cash can be withdrawn.
This is the way to stop
The official said that in view of this type of fraud, banks have been instructed to ensure ‘end-to-end encryption’ between the ATM terminal or the PC and the ATM employee.
Banks have been asked to hide the network cable, input / output port of the ATM premises and keep it safe through security guards. A similar advisory has also been issued by the Reserve Bank of India (RBI).
46% increase in digital transactions
Digital transactions in the country have increased by 46 percent in 2019-20 as compared to 2018-19 in the country. According to the official, the Ministry of Home Affairs has been in regular dialogue with the state governments and the administrators of the Union Territory and has been advising them for speedy disposal of cases related to cyber attacks.
CERT-In is the national technology unit for dealing with cyber attacks and cyber security.