WinPot: Security researchers have discovered one strange malware for ATM which converts theft of money in a slot machine. Yes, like those games you find in casinos.
Την Τρίτη, η ομάδα ασφάλειας Kaspersky Labs ανακοίνωσε την εμφάνιση του WinPot, μιας οικογένειας malware που χτυπάει ATM. Το νέο κακόβουλο software εμφανίστηκε για πρώτη φορά σε υπόγεια Forums in March 2018.
Although simple in its main function, WinPot - internally referred to by Kaspersky as ATMPot - is designed to break into the ATMs of a popular ATM company. After the infection it forces the machines to empty their cartridges of all the money they contain.
The appearance of malware is what makes it very unusual, as it looks like a slot machine.
The screen displayed by the ATM includes four reels numbered from 1 to 4.
There is also a button labeled “spin”, which when pressed, starts cashing out. The “stop” button stops the cash withdrawal, while the “scan” resets the “game” and rescans a machine for cash availability. (Stop will probably be the button that will usesless...)
The malware developer on the Dark Web is already advertising WinPot version 3, which also includes a refreshed display and a new feature called "ShowMeMoney."
Το WinPot εμφανίζει ομοιότητες με το Cutlet Maker, ένα κακόβουλο λογισμικό το οποίο πρέπει να φορτωθεί σε ένα USB και να συνδεθεί στο ATM από μια θύρα USB. Μόλις φορτωθεί, ο κακόβουλος κώδικας διαλύει το σύστημα ενώ ένας simulator simulates transactions to force the machine to dispense cash.
H Kaspersky Lab recognizes WinPot as Backdoor.Win32.ATMPot.gen
______________
- Search Developer finds an ATM error and steals $ 1 million
- Jackpotting: forces ATMs to hurl money
- Kaspersky: nyet in appealing against the US government
- TDSSKiller free Rootkit removal from Kaspersky