The FBI warns of a sharp rise in ATM jackpotting across the United States, reporting over 1,900 incidents since 2020 and more than 700 in 2025 that have caused over $20 million in losses. Attackers are exploiting physical access and software flaws—most notably the Ploutus family targeting the XFS layer—to force cash dispensal, prompting calls for stronger physical and technical controls. #Ploutus #DieboldNixdorf
Keypoints
- The FBI reports more than 1,900 ATM jackpotting incidents since 2020, with losses exceeding $20 million.
- Ploutus malware targets the XFS software layer to send commands directly to ATM cash dispensers, bypassing bank authorization.
- Attackers frequently gain physical access by using generic keys, swapping hard drives, or connecting external devices like USBs.
- Law enforcement links these attacks to organized crime, with recent DOJ indictments and multimillion-dollar thefts from credit union ATMs.
- The FBI recommends measures such as hardware monitoring, device whitelisting, disk encryption, strict audit logging, and maintaining a verified gold-image baseline.
Read More: https://thecyberexpress.com/fbi-flags-rise-in-atm-jackpotting-attacks/