How hackers steal 9 million USD from ATM in 1 hour

Cisco security experts explained the entire process that bad guys apply to withdraw the money with just over 100 real cards.

In theory, this is not possible because each card can be withdrawn for no more than 500 USD / day. However, the hacker used the method of counterfeiting in the following way:

First , they steal a real ATM card when breaking into the RBS WorldPay system (online payment service of the Royal Bank of Scotland system) stealing at least 100 payroll account information. According to WorldPay, a payroll card is a value-added money-saving card that can be used at any point of sale that accepts credit and debit cards.

Next, the hacker must figure out how to reload these cards. To do that, they broke into the RBS WorldPay system again, reloading the payroll card with a fake deposit (just numbers entered into the computer). These numbers will turn into real money when withdrawing through the ATM system.

In the next step , they have to duplicate the stolen card information into thousands of real payroll cards. This is quite easy and cheap when using different card printing devices, especially in countries that are not closely monitored.

Then , the criminals recruit a casher to go to ATMs, use fake payroll cards (but valid) and withdraw money.

Specific plans are set up with simultaneous actions in at least 49 cities around the world, including Atlanta, Chicago, Montreal, New York, Moscow, Hong Kong . on about 130 ATMs.

On November 8, 2008, this criminal network made plans and successfully withdrew $ 9 million in the night. The FBI has taken photos of some cashers from the ATM camera and is conducting an investigation.