Close Menu
    What's Hot

    The great AI layoff is turning into the great AI rehire

    Trump Says His Thursday Speech Will Focus on Election Security and Voting Machines

    How the failed 2016 coup reshaped Turkiye’s civil-military relations | Turkey Attempted Coup News

    Facebook X (Twitter) Instagram
    Trending
    • The great AI layoff is turning into the great AI rehire
    • Trump Says His Thursday Speech Will Focus on Election Security and Voting Machines
    • How the failed 2016 coup reshaped Turkiye’s civil-military relations | Turkey Attempted Coup News
    • Wayfair Coupons: Up to 80% Off July 2026
    • Today on Sky Sports Racing: Bath, Lingfield, Yarmouth and Uttoxeter | Racing News
    • OAuth Client ID Spoofing Lets Attackers Validate Stolen Microsoft Entra Credentials
    • Years After He Quit Smoking, a Lung Cancer Scan Saved His Life
    • South China Sea Nine-Dash Line Ruling, 10 Years On
    interluknewsinterluknews
    • Home
    • Business
      • Corporate News
      • Industry Insights
      • Startups & Entrepreneurship
      • Technology & Innovation
    • Economy
      • Economic Policy
      • Financial Analysis
      • Inflation & Interest Rates
      • Trade & Markets
    • Global
      • Conflicts & Security
      • Diplomacy
      • Global Trends
      • International Affairs
    • Lifestyle
      • Fashion
      • Food & Dining
      • Personal Development
      • Travel
    • Opinion
      • Columns
      • Editorials
      • Expert Opinions
      • Reader Voices
    • More
      • Politics
        • Elections
        • Government & Policy
        • International Relations
        • Political Analysis
      • Sports
        • Cricket
        • Football / Soccer
        • International Sports
        • Local Sports
      • Technology
        • Artificial Intelligence
        • Cybersecurity
        • Gadgets & Reviews
        • Tech News
      • South Africa News
    Facebook X (Twitter) Instagram
    interluknewsinterluknews
    Cybersecurity

    FBI Reports 1,900 ATM Jackpotting Incidents Since 2020, $20M Lost in 2025

    adminBy adminFebruary 24, 2026No Comments3 Mins Read
    Share Facebook Twitter Pinterest Copy Link Telegram LinkedIn Tumblr Email
    FBI Reports 1,900 ATM Jackpotting Incidents Since 2020, M Lost in 2025
    Share
    Facebook Twitter LinkedIn Pinterest Email

    Ravie LakshmananFeb 20, 2026Financial Crime / Banking Security

    FBI Reports 1,900 ATM Jackpotting Incidents Since 2020, M Lost in 2025

    The U.S. Federal Bureau of Investigation (FBI) has warned of an increase in ATM jackpotting incidents across the country, leading to losses of more than $20 million in 2025.

    The agency said 1,900 ATM jackpotting incidents have been reported since 2020, out of which 700 took place last year. In December 2025, the U.S. Department of Justice (DoJ) said about $40.73 million has been collectively lost to jackpotting attacks since 2021.

    “Threat actors exploit physical and software vulnerabilities in ATMs and deploy malware to dispense cash without a legitimate transaction,” the FBI said in a Thursday bulletin.

    The jackpotting attacks involve the use of specialized malware, such as Ploutus, to infect ATMs and force them to dispense cash. In most cases, cybercriminals have been observed gaining unauthorized access to the machines by opening an ATM face with widely available generic keys.

    Cybersecurity

    There are at least two different ways by which the malware is deployed: Removing the ATM’s hard drive, followed by either connecting it to their computer, copying it to the hard drive, attaching it back to the ATM, and rebooting the ATM, or replacing it entirely with a foreign hard drive preloaded with the malware and rebooting it.

    Regardless of the method used, the end result is the same. The malware is designed to interact directly with the ATM hardware, thereby getting around any security controls present in the original ATM software.

    Because the malware does not require a connection to an actual bank card or customer account to dispense cash, it can be used against ATMs of different manufacturers with little to no code changes, as the underlying Windows operating system is exploited during the attack.

    Ploutus was first observed in Mexico in 2013. Once installed, it grants threat actors complete control over an ATM, enabling them to trigger cash-outs that the FBI said can occur in minutes and are harder to detect until after the money is withdrawn.

    “Ploutus malware exploits the eXtensions for Financial Services (XFS), the layer of software that instructs an ATM what to physically do,” the FBI explained.

    Cybersecurity

    “When a legitimate transaction occurs, the ATM application sends instructions through XFS for bank authorization. If a threat actor can issue their own commands to XFS, they can bypass bank authorization entirely and instruct the ATM to dispense cash on demand.”

    The agency has outlined a long list of recommendations that organizations can adopt to mitigate jackpotting risks. This includes tightening physical security by installing threat sensors, setting up security cameras, and changing standard locks on ATM devices.

    Other measures involve auditing ATM devices, changing default credentials, configuring an automatic shutdown mode once indicators of compromise are detected, enforcing device allowlisting to prevent connection of unauthorized devices, and maintaining logs.

    Update

    The U.S. has indicted six more suspects for ATM jackpotting crimes, accusing them of conspiracy to commit bank fraud, conspiracy to commit bank burglary and computer fraud, bank fraud, bank burglary, and damage to computers. The suspects are alleged to be affiliated with Tren de Aragua, a designated Foreign Terrorist Organization. With the latest development, a total of 93 defendants have been charged in connection with the scheme in recent months.

    20M ATM FBI Incidents jackpotting lost reports
    Follow on Google News Follow on Flipboard
    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email Copy Link
    Previous ArticleA Beautiful New Ice Cave Was Just Discovered in Iceland,…
    Next Article The Best Chairs and Desks From Branch Are On Sale (We’ve Tested Them All)
    admin
    • Website

    Related Posts

    OAuth Client ID Spoofing Lets Attackers Validate Stolen Microsoft Entra Credentials

    July 15, 2026

    How Pentera Turns AI Security Workflows into Validation Engines

    July 15, 2026

    Study of 85 Crypto Wallet Extensions Finds Address Leaks and Cross-Site Tracking Risks

    July 15, 2026
    Leave A Reply Cancel Reply

    Demo
    Latest Posts

    The great AI layoff is turning into the great AI rehire

    Trump Says His Thursday Speech Will Focus on Election Security and Voting Machines

    How the failed 2016 coup reshaped Turkiye’s civil-military relations | Turkey Attempted Coup News

    Wayfair Coupons: Up to 80% Off July 2026

    Latest Posts

    Subscribe to News

    Get the latest sports news from NewsSite about world, sports and politics.

    Advertisement
    Demo

    We are a digital news platform delivering timely, accurate, and insightful coverage of politics, global affairs, business, economy, sports, and more. Our mission is to keep readers informed with reliable news, clear analysis, and stories that truly matter.
    We're social. Connect with us:

    Facebook X (Twitter) Instagram Pinterest YouTube

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    Type above and press Enter to search. Press Esc to cancel.

    Powered by
    ...
    ►
    Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
    None
    ►
    Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
    None
    ►
    Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
    None
    ►
    Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
    None
    ►
    Unclassified cookies are cookies that we are in the process of classifying, together with the providers of individual cookies.
    None
    Powered by