How ATM jackpotting attacks work
Instead of asking the bank for permission, the malware overrides that process. It sends its own commands to the machine. The result? The ATM dispenses cash without a card, without an account and without a legitimate transaction. That is jackpotting.
Here is the uncomfortable truth. Many ATMs run on aging versions of Windows. Some machines have even displayed Windows 7 login screens. That operating system was released in 2009 and officially discontinued years ago.
Outdated software creates opportunity. If attackers find a vulnerability in the Windows operating system, they can exploit it across different ATM brands and financial networks. The FBI says these attacks are not tied to one specific bank or ATM manufacturer. Instead, they target common weaknesses shared across systems.
While ATM jackpotting attacks primarily target banks, you can still take smart steps to protect yourself when using cash machines.
Choose machines inside bank branches or in busy areas with foot traffic. These locations are more likely to be monitored and maintained.
Criminals need physical access to tamper with machines. High traffic areas during regular business hours reduce that risk.
If a machine suddenly reboots, freezes or behaves strangely, stop immediately. Do not insert your card. Report the issue to the bank right away.
https://www.msn.com/en-us/news/technology/atm-jackpotting-attacks-surge-across-the-us/ar-AA1ZdQg1