FBI Reports Surge in ATM Jackpotting, Hackers Steal Millions
In recent years, the criminal act of ATM jackpotting has escalated significantly. Security experts reveal that hackers are exploiting vulnerabilities in ATM machines to steal millions of dollars. According to a recent FBI security bulletin, incidents have surged dramatically, with over 700 reported attacks on ATMs in 2025 alone.
Understanding ATM Jackpotting
ATM jackpotting refers to the process where hackers manipulate ATM machines to dispense large sums of cash unlawfully. This technique has evolved from a theoretical concept to a measurable trend in the cybercriminal landscape.
Attack Statistics
- Total ATM attacks in 2025: 700+
- Total stolen cash: At least $20 million
Methods Used by Hackers
The FBI bulletin outlines the methods employed by hackers in these attacks. They typically combine physical and digital tactics to gain control over ATMs.
- Physical Access: Hackers use generic keys to unlock ATM front panels and access internal components.
- Digital Tools: Malware is strategically planted to manipulate ATM operations.
The Role of Ploutus Malware
One of the most notorious malware types in play is known as Ploutus. This software targets ATMs by exploiting vulnerabilities in the Windows operating system.
- Control: Ploutus gives hackers full control over an ATM, allowing them to issue commands that bypass standard transaction processes.
- Target: It focuses on the ATM machine, enabling rapid cash withdrawals without affecting customer accounts.
- Exploiting XFS Software: Ploutus takes advantage of financial services extensions that manage communication between ATM components.
Challenges in Detection
The FBI highlights that Ploutus enables quick cash withdrawals that can occur in minutes. This speed makes such attacks challenging to detect until after the cash has been stolen. Security researchers have identified significant flaws in the XFS software that could lead to similar exploitation.
In conclusion, ATM jackpotting represents a concerning trend in cybercrime. With escalating attacks and sophisticated methods, it poses a significant threat to the financial landscape. Authorities and security professionals must continue to address these vulnerabilities to protect against such theft in the future.