Sticky Criminals

CBS in San Francisco is reporting a rather novel cash machine attack. .

It seems that crooks are applying superglue to the clear, enter, and cancel buttons on cash machines at banks. A customer goes to the cash machine, inserts their card and enters their PIN. Then the victim notices the enter key is not working so they go inside the bank for assistance. At that point the crook goes up to the machine and withdraws the cash.

It might be a good idea to test the buttons on the cash machine before you insert your card!

Randy Abrams
Director of Technical Education
Cyber Threat Analysis Center
ESET North America

Author , ESET

  • Roel Schuitman

    Or you could just always enter a wrong PIN to start with and half-way you will get the question about your mistakenly incorrect PIN….
    this will avoid this issue and some others… ;-)

    • Randy Abrams

      Hmm… an interesting approach. I wonder how effective this approach is with respect to card skimming equipment?

  • Roel Schuitman

    I hope VERY effective, but I seriously doubt it. 
    On the other hand it might give some headaches for the skimmer. It depends on the time in which keystrokes are recorded. either by video or digitally.
    Any connections with testers with Skimming equipment? 

  • Jim Harper

    Interesting approach.. not only that the particular key "doesn't work", but they now also have a fingerprint should they choose to take off in that direction.
    Unless of course you used the bent-finger approach which then would only provide them with your knuckle imprint.
    Ah yes, creativity abounds.

  • Mike

    It never ceases to amaze me of the creativity of criminals.

    If only that same mindset were used to lift up and strengthen rather than tear down and destroy.

Follow us

Copyright © 2018 ESET, All Rights Reserved.