This is an official email received by NAC (National ATM Counsel) on 8/19/24.

 

Please note that this security bulletin effects ATM companies who utilize RMS software and who have not changed the default passwords.

 

Please be aware- if you are a Best Products customer- this should not effect you- unless you are utilizing your own RMS software and have default passwords.

 

Critical Hyosung & Genmega ATM Security Directive

 

In collaboration with the FBI and Secret Service, Genmega and Hyosung have become aware of several recent cyber-attacks specifically targeting ISO and IAD ATM operators. Criminals are modifying terminal settings to replace the legitimate ATM host processor with a fraudulent server to falsely authorizing high-dollar withdrawal transactions to empty significant amounts of cash from the ATM (aka jackpotting). This is not restricted to any manufacturer or model type.

 

The cyber-attacks are varied in nature and law enforcement has seen attacks that start with local, physical access of the ATM and attacks on the ATM remote management systems (RMS). The use of default or easily guessed passwords (such as 111111) are common and provide criminals straightforward access to change configuration settings directly on the ATM. Similarly, criminals are probing the internet for exposed RMS servers and using default passwords to remotely change settings.

 

Hyosung and Genmega strongly recommend the following actions to protect your fleets:

 

  1. Of utmost importance, ensure RMS software is protected with proper IT and network security, such as running behind a tightly configured firewall.
  2. Change all default or easily guessed passwords used to gain access to ATM configuration settings. Never write down the password on or in the ATM (even inside the cabinet).
  3. Change all passwords on RMS software, both for workstations and databases.
  4. Enable TLS communications between the ATM and the host processor. Recent software releases enable TLS by default, but older software or misconfiguration may result in TLS being disabled.

 

ATM crime is a threat to our industry, regardless of robbery, theft, or cyber-attacks. Genmega and Hyosung will continue to collaborate with law enforcement and between our companies to advance security and legislation to deter criminal behavior. For further information please contact the respective support organization for assistance.

 

Sincerely,

 

Wes Dunn
Chief Revenue Officer
Genmega

 

Nancy Daniels
Chief Operating Officer
Hyosung

Follow Us on Social

Peter Wilkenshoff

Peter Wilkenshoff is the President of Best Products Sales and Service Inc./ BestATMstore.com. With more than 20 years in the payments industry, he has made a career out of helping businesses get paid in the simplest and smartest ways possible. Cash, cards, mobile wallets or whatever futuristic payment gadget someone invents next week, he is here for it. He loves taking the stress out of money movement and turning complex processes into something anyone can understand. When he is not working he is usually fishing, building something around the house, out on a boat, surfing or planning the next family Disneyworld trip which sounds like a strange mix until you meet him and suddenly it all adds up.

Follow Peter on LinkedIn: https://www.linkedin.com/in/peter-wilkenshoff/

Join our Newsletter

Subscribe to receive updates, access to exclusive deals, and more!

Related Posts