In Russia intensified cyber-criminal groups, ATMs clean out with a new computer virus Tyupkin. How to write “Izvestia”, the threat of new malware financiers Interior Ministry warned.
We are talking about the program in 2014 malware Tyupkin, which already delivers serious concern bankers in Russia, Europe, USA, China. The Interior Ministry said that Tyupkin now become an innovative trend in domestic criminals – is already known about a few dozen robberies ATMs with this virus.
These robberies usually take place in the following way: one group of criminals opens and ATM service unit introduces a program that infects a computer virus Tyupkin. When the unit is filled with money, another group of thieves with the keyboard activates the ATM access the service menu and commands the issuance of all bills. Ministry of Internal Affairs and antivirus creators believe Tyupkin new type of threat to the banking community, which will be relevant in the criminal world in the near future, so the urge banks to pay greater attention to safety.
Robberies of well organized groups with clear roles. “One group reveals ATM service unit, which is usually poorly protected and it is not necessary to alarm – told” Izvestia “the official representative of the” K “Interior Ministry Alexander Vurasko. – Depending on the model of the ATM attackers charged with a virus from a CD or flash drive to the system BIOS, close the ATM and go ».
Since the virus, hackers are able to manage the ATM.
ATMs empties another group of thieves. “They introduce a one-time code that gives them the organizer, the virus shows on the display the service menu through which you can control all functions, including the issuance of cash,” – said Vurasko. According to him, the attackers removed all the available cash from an ATM. Typically, ATM provides up to 40 bills at a time, but restrictions will not be infected – the money will pour out of the machine continuously.
attacks are usually subject to widespread ATMs running Microsoft Windows XP. Tyupkin virus has several modifications. Some versions are also involved in skimming – read data from the magnetic stripe cards and memorize the PIN-codes, others allow you to destroy and erase the traces Tyupkin video.
Unlike skimming when the victims are nationals, in the case of a virus Tyupkin victims advocate the banks themselves. In an ATM is placed in an average of 10 million rubles, so the damage to the banks could be significant.
Representatives of “Kaspersky Lab” Tyupkin include a new type of threat to the banking community, which will soon replace the traditional skimming.
«For the crooks is a progressive technology that can dramatically reduce the number of different actions and transactions, – told” Izvestia “head of investigating computer incidents” Kaspersky Lab “Ruslan Stoyanov. He added that now do not need to transfer money from the card to other accounts and create a fake company to get rid of money through their accounts.
Experts say that the cost of protection against Tyupkin will not be astronomical. “Exception access to the filling of ATMs already seriously hamper the implementation of the attack for attackers – told” Izvestia “head of the analytical center Zecurion Vladimir Ulyanov. – The cost of these measures depends on the size of the network of ATMs and completeness of the measures themselves. ” According to analysts, to a large network of tens of thousands of ATMs set of measures to increase protection against Tyupkin, cost several hundred million rubles.
According to Ulyanov, you need to toughen the penalties for committing such as attacks, as well as for aiding and abetting. In the second case, it is the responsibility of insiders – employees of banks that give criminals information or transmit the keys to the ATM.
In the banking community know about Tyupkin, but do not consider it a serious threat. “This scheme has long been known, and during this time the banks have learned to practice these risks,” – said the head of the Information Technology Security SMP Bank Paul Golovlev. “We heard about Tyupkin, but the program itself is nothing sverhneordinarnogo not – this is a typical trojan. The danger lies in the fact that we are talking about information leakage. To open the ATM, you must have duplicate keys, so they really sends someone of their own, but rather sells “- told” Izvestia “head of the payment systems of the Bank of Settlements and Savings Edward Ahunyanov. According to him, changing locks and modifying the program – it is an additional cost, so it’s better to tighten control over the keys, as collectors and the technical service staff is carefully checked for employment.
No comments:
Post a Comment