1 Best Practice for ATM Security Overview of ATM security situation, forecast, and best practices GRGBanking Equipment (HK) Co.,Ltd /5/27
2 About GRGBanking GRGBanking is a leading currency recognition and cash processing solutions provider in the global market. We have been specialized in the development of Automatic Teller Machine (ATM) for financial institutions and retailers, Automatic Fare Collection (AFC) equipment for railway or metro systems, as well as other currency recognition and cash processing equipments for over 20 years. Besides, our various multi-channel software solutions and services cover the needs of the financial industry, retail, transportation, payment, self-service, cash automation, cash management outsourcing and managed services, customized for different customers around the world. In 2007, GRG set up the ATM security research institute dedicating to providing the latest security information, product, training and consultant services. For contacting GRGBanking or general enquiries on security matters, please contact following details: Mail address: 9 Kelin Road, Science City, Luogang District, Guangzhou, China Tel : +86 (0) Fax: +86 (0)
3 Table of Contents: Part 1 Summary... 4 Part 2 Types of ATM attack... 5 Physical attack: Ram-raid: Cutting: Explosive:... 8 ATM fraud: Card skimming: Card trapping: Cash trapping: Transaction reversal: Deposit Fraud: Software and network attack: Part 3 Forecast for Part 4 Countermeasure Recommendation for Banks Recommendation for ATM manufacture Part 5 Conclusion Part 6 GRG Security solutions and services Fraud Prevention Solution Physical Protection Solution Software and network security solution Security Accessories References... 23
4 Part 1 Summary Today, ATM has become an irreplaceable communication and service channel between banks and cardholders due to its fast, convenience and human resource saving advantages; you can easily find ATMs in branches, convenience stores, airports, and shopping malls. But with the prosperity of installed ATM, the reported ATM crime also has been dramatic grown (Figure 1), causing big loss (Figure 2) for cardholders and banks. To build safe ATM use environment, maintain bank s brand image and protect bank assets, all the involved organizations, institutions, and persons must research, develop and takes measures to meet the challenges faced by ATM crimes. Figure 1: ATM related attacks. Source: EAST 4
5 Figure 2: ATM Related attacks by total reported losses in Europe. Source: EAST This paper is hoped to describe a general picture of ATM crime, help ATM owner understand threats facing their ATM security, raise bank and cardholder awareness about risks faced when using ATM, and provide a set of advice and countermeasure on how to identify and fight against ATM attack. This document can not cover all the facets associated with ATM attack, forecast, and countermeasure, but should be taken as a useful guidance aiming to increase public awareness of ATM security. Part 2 Types of ATM attack There are a variety of ATM attacks because it is such an attractive target. We can not list all the types, but highlights some popular ones. Basically, there are three basic types of ATM attacks: Physical attack:brute force attack to ATM machines with the intention of gaining access to cash within the safe 5
6 ATM Fraud:Theft of bank card information. Software and network attack:theft of sensitive information or controlling ATM spew out bills automatically. Physical attack: This kind of crime is active in Euro-American, Russia, and Africa, and is also showing a trend of escalation in Asia-pacific area. According to a recent report release by EAST, a total of 2,062 physical attack incidents in Europe were reported in Ram-raid: The common method is physically removing ATM from premise with vehicle or heavy truck, and then steal cashes with opening safe by force. A vehicle failed to steal an ATM 6
7 An ATM was brute removed from a convenience store Recent incidents: In UK, it was reported that on May 11 th, Ram-raiders who stole a cash machine from a Bingley shop caused about 30,000 of damage after repeatedly driving a car into the shutters. The masked burglars towed away a cash machine using a 4x4 vehicle 1. Police in Salzburg said on April 9 th that a cash terminal was ripped out of its foundations. The unidentified gang most likely used a chain to remove the heavy device in what has been the 25th failed or successful attempt to steal a cash terminal in Austria in the past 14 months Cutting: Use rotary saw, blow torch, thermal lance, and diamond drill to brutally open safe gaining direct access to cash. 7
8 Recent incidents: ATM cutting Police in Neunkirchen, Lower Austria, announced in April that one automated teller machine (ATM) was cut open by the felons with special tools, which cause 20,000 Euros loss 3. A man carrying multiple blowtorches broke into the ATM drive-through building on 2 nd March, causing a small fire in the process. There is damage to the interior of the ATM, fire damage as well as torches were located inside but no description of how much money the burglar may have made off with Explosive: Criminals use solid explosive material or combustible gas to explode with intent of gaining access to the security enclosure. The most serious is explosive not only causes cash loss, but also facilities and environment damage or casualties 8
9 Recent incidents One man involved in the high-risk robbery which involved pumping flammable gas into a Bank of Queensland ATM at Geebung was arrested in May. The explosion allowed them to steal $118,000 from the money cartridges inside the machine 5. Thieves have detonated a gas bottle in order to rob an ATM machine in the small locality of Mihovljani in Zagorje. The thieves blew up the ATM machine during the night, hours after it had been filled with cash. The ATM machine was also destroyed 6. ATM fraud: 2.1 Card skimming: Magnetic card information details are compromised by a disguised card reader known as skimming device which is normally installed in front of card reader entry slot or some ATM room-door lock. Skimming is by far the most popular method of ATM network attack, accounting for over 80% of ATM fraud, or around $800 million in 2008 full year 7. The main reason makes it popular is high ROI from this attack. 9
10 Comparison between skimmed slot and real slot A false front Recent incidents: The same Winnetka bank branch reported an ATM skimming device in December 2010, in which 25 customer bank cards were swiped. Not all of the customers accounts were compromised, O Herlihy said at the time 8. A Romanian man who stole hundreds of thousands of dollars by placing skimming devices on area bank machines was sentenced Monday to 23 months in prison, plus three years of federal supervision 9. In April, a Twenty-eight-year-old Viktor Kafalov admitted Wednesday in U.S. District 10
11 Court in Newark that he conspired with others to install the so-called skimming devices on ATMs at Valley National Bank branches in Nutley and Belleville. He and his accomplices took more than $278,000 from customers' accounts Card trapping: Trap or jam the card by placed wire, tapes or other mechanism in the card entry slot. Recent incidents Lebanese Loop, commonly used for card trapping In several hotpots of borough, more than 30 residents have reported thieves stealing their money or cards at cash machines in less than three months the May. The thieves have used techniques such as the Lebanese loop, a plastic strip they insert into the cash machine to capture bank cards 11. In Thailand, a criminal placed toothpicks in ATM card slots to trap the cards of people who tried to withdraw money from the machines. Police do not know how many millions he has allegedly stolen from ATM machines over the years. But they say Mr Wasan's bank records going back three months suggest he was making at least 150,000 baht a day, allegedly from ATM thefts 12. Instead of the theft card information in skimming crime, card trapping is actually intended to physically capture card. But no matter trapping or skimming, criminals 11
12 have to capture customer s PIN. Several different methods are used by fraudsters to capture PIN: PIN PAD Overlay: Place a false plastic PIN pad on the original one and text PIN when customer enters Spy camera: Install a fake advertising box or mailbox with small convert camera inside to observe PIN entry. With the wireless technology developing, the captured PIN can be real-time transited to allowing producing counterfeit card immediately, compared with old stand-still capture method. Powerful telescope: scammers observe PIN entry activity and judge PINs from finger movement during operation. Honey trap:place an false advertisement, notice or service hotline number 12
13 hoping to get PIN by Help or recommendation False ATM operation guidance 2.3 Cash trapping: Criminals fix a false withdrawal shutter slot, causing cashes to get stuck inside when customers attempt to do a withdrawal. The customer leaves assuming that the machine is out of order or goes inside the bank to report the incident and the thieves return to retrieve the notes 13. Cash is trapped by false withdrawal shutter Recent incidents: TWO men have been arrested for allegedly trying to steal cash from bank customers 13
14 by tampering with an ATM in Chingford. They placed a small plastic strip in front of ATM so that when cash is ejected it becomes stuck 14. City of London Police entered a flat in Harrow; arresting two Romanian men aged 23 and 25. They found six cash traps, which are placed over a cash machine and use a metal bar to prevent the customer receiving the money. There were 1,738 recorded incidents in three months Transaction reversal: Transaction reversal scams use certain methods to create an error condition at the ATM so as to re-credit amounts withdrawn to the account. Sometimes thief removes only portion of the bills from the dispensing tray. They let the ATM Time out and retract the rest Deposit Fraud: Deposit fraud includes various criminal techniques from making false deposits, trapping deposits through skilful manipulation of ATM with the deposit function. Software and network attack: Instances where thieves use specially designed malware to infect the machines or hack into the ATM s internal data networks to steal the account information. The first lunched malicious attack was detected in 2008 in Russia. Till now it has spread outside Europe, and reported incidents in Latin America, Romania, even in Vietnam. Recent incidents: 14
15 A former Bank of America programmer has been sentenced to 27 months in jail for unauthorized access to the bank's computer system. He was hired by BofA and had been assigned to work on a project involving the bank s ATM system. From March 2009 to October 2009, Caverly knowingly and with intent to defraud exceeded his authorized access by gaining access to one or more protected [BofA] computers and deployed a malicious computer code to select [BofA] ATMs." 17. A new banking Trojan with infection rates similar to SpyEye and Zeus in some regions has emerged. The Sunspot Trojan has already been linked to instances of fraudulent losses, according to transaction security firm Trusteer. The Windows-based malware is designed to carry out man-in-the-browser attacks, including web injections, page-grabbing, key-logging and screen shooting (a feature that captures screenshots of the location of a mouse as a user types his/her password on a virtual keyboard) 18. Part 3 Forecast for 1. Card skimming will be No.1 threat: Even the reported skimming incidents is falling down, card skimming will be the NO.1 threat to ATM security 19. The main reason is the maturation of skimming business. Criminal can easily buy skimming device of more sophisticated technology with cheaper price. Also wireless component widely merging allows thieves to fast produce counterfeit card throughout the world and make money immediately, which also because they are not easy to be caught. We also should know that high ROI makes criminals are eager to this kind of crime. In some countries even they are arrested and prosecuted, the punishment is far lower than brute crime. Another fact we have to know that card skimming occurs globally, with EMV migration steadily being pushed, parts of the world that are not EMV compliant will be the severely afflicted area. 15
16 ATM Fraud Prevention ATM Crime 2. Malicious and Trojan will bring big threat to ATM: Software and network attacks, especially malicious attacks are getting more sophisticated, which often implemented by criminal organizations with strong software engineering capabilities. Most malicious is able to remain silent, which may be cause big loss but undetected by banks. The most serious problem is we don t have enough measures or detection tools to prevent it. 3. The number of explosive will be growing: Although physical attacks have fallen in the past year, the total number of reported explosive and gas attacks has gone up. The main reason is gas explosive provides fast access to safe than traditional safe-breaking method. Also this kind of crime is easy to implement. Maybe only one bottle of gas and one lighter can bring big money. Part 4 Countermeasure Recommendation for Banks Deploy layered security rules to protect ATM physically and software, such as installing EPP shield, installing monitoring system and security software. Provide a safety environment for cardholders. Category Recommendation Description Physical Anti-skimming devices are able to prevent skimming devices from capture card information. PIN PAD Shield can shield onlooker s view preventing PIN from compromised when entered. 16
17 Physical attack Protection ATM Crime Consumer awareness mirror is a means to be aware of surroundings. Upgrade card reader with jitter function. Some anti-skimming solution provides fascia scanning function to detect if any foreign objective attached. Biological recognition system make PIN compromise impossible. Management Educate cardholder how to choose a safe ATM, how to check physical surroundings, how to check ATM, and how to do when suspicious event happens. For detailed information, please find GRG released Safety tips. Work out ATM security check list and Formulate patrol inspecting system. Scheduled checks of ATM branch, ATM surrounding Physical measure Audible alarm could help dissuade a thief from following through with their ATM theft. 17
18 Intruder system can detect if any suspicious event happens. Thermal sensors, seismic sensors, and explosive detector are the basic requirement in this system. Monitoring system should view the ATM and record suspicious events, also should be remotely monitored by monitor center. Installation: choose a safe place to install ATM; visibility from the road is main factor. Well-constructed base is very important which make ATM securely fixed to floor by a minimum of four anchor bolts. 18
19 Barriers: anti-ram bollards, kerbs or similar furniture s can be installed in front of ATMs. Also some barriers that wrap around ATMs in order to make lassoing or lifting the ATM more difficult. Lockers, known as anti-theft mechanism, could make physically removing ATM very difficult by being attached to the main body of the ATM. Cash degradation system could immediately dye notes when activated in case of ATM being moved or attacked. It is also an excellent means to deter cash theft or robbery for CIT by providing end-to-end security. 19
20 ATM network security ATM Crime Security accessories, such as tamper evident label and lock, cable ties, can easily find if any unauthorized access to safe and cassettes. Management Work out ATM security check list and Security deployment policies formulate patrol inspecting system. Scheduled checks of ATM branch, ATM surrounding USB ports management Use complex logon password. Install Anti-virus software. In stall patches from vendors. Management Employee education Recommendation for ATM manufacture 1. Pay more attention to ATM security: Fully consider meeting all security standards in ATM field when early in the design process, such as UL291 standard, PCI-EPP, and ensure ATM has a variety of security features of crime prevention and protection before delivery. 2. To actively develop detection software, security solution and security service. 3. Work closely with banks to put countermeasure of ATM security prevention. 20
21 Part 5 Conclusion From the first ATM being installed in the world till now, ATM has gradually become a target of crimes due to it providing direct access to safe and cash. While with the constantly evolving of reported ATM crime, ATM industry has begun to pay attention to the safety of ATM, even cardholders. We believe under the joint and sustained effort of ATM suppliers, banks, and related organization, a more safe and convenient transaction platform and channel will be built up eventually. 21
22 Part 6 GRG Security solutions and services ATM security is the prime concern of financial institutions from the beginning of deploying. GRG has set up the ATM security research institute dedicating to providing the latest security information, product, training, and consultant services, which is the leading security institute with over hundreds of engineers and researchers. From ATM fraud prevention solution-to physical protection solution and software and network solution-grg provides overall and multi-layered solutions of financial institute. Fraud Prevention Solution PCI EPP: tamper resistance, triple DES encryption Card reader: EMV certified, jitter, ERCS Consumer awareness mirrors Biometrics Identification technology PIN PAD shield Separate retract and divert cassette compartments Fascia and gate design Encrypted communication Identity NoteTrace Transaction image capture for surveillance Physical Protection Solution DVR surveillance system with sensors and alarm network GSM-Based alarm network Local siren Ink-dye system Anchoring system Software and network security solution SECOne: comprehensive terminal security system FEEL View Express: Multi-Vendor ATM Monitoring System Security Accessories NON-residue Tamper Evident label Frangible paper seal Pull Tight Security Seal Master Key System Tamper Indicative Padlock ATM Safety Tips Decal For more information on solution details and security aspect, visit us at or contact at +86 (0) UL291 and CEN rated safe Mechanical and electronic locks 22
23 References 1. eir_way_into_minimarket/ 2. olen_from_shop 3. _cash_machine_theft_in_lower_austria 4. e-bank-job html 5. ne-atm ebpd.html 6. _blow_up_atm_machine_while_trying_to_rob_it 7. Krebs. Brian. ATM Skimmers, PartII. Kerbs on security.(online) Febu 8. vered-again-in-winnetka/ sh_points/ 12. illions 13. ATM Crime: overvie of the European situation and golden rules on how to avoid it, ENISA, August Cash_ machine_fraudsters arrested/ A Risk-Based Approach to ATM Security: Best Practices and PCI Compliance, 23
WHITE PAPER ATM Fraud and Security Minimizing loss, mitigating risk and maintaining consumer confidence in the ATM channel Since the introduction of the first automated teller machine (ATM) in 1967, perpetrators
ATM FRAUD AND COUNTER MEASURES GENESIS OF ATMs An automated teller machine was first introduced in 1960 by City Bank of New York on a trial basis. The concept of this machine was for customers to pay utility
Security Whitepaper Five Tips to Fight ATM Skimming ATM skimming is a global crime that incurs annual losses of $1 billion. At the basic level, thieves seek to extract cash from bank accounts; however,
Policy for Protecting Customer Data Store Name Store Owner/Manager Protecting our customer and employee information is very important to our store image and on-going business. We believe all of our employees
Protecting the POS Answers to Your Frequently Asked Questions PROTECTING THE POS What is skimming? Skimming is the transfer of electronic data from one magnetic stripe to another for fraudulent purposes.
PCI and EMV Compliance Checkup ATM Security Jim Pettitt Director, ATM Security Diebold Incorporated Agenda ATM threats today Top of mind risk PCI Impact on Security U.S. EMV Migration Conclusions / recommendations
1 February 2010 Volume 2, Issue 1 The Merchant Serving Florida State University s Payment Card Community Individual Highlights: Skimming Scam 1 Skimming at Work 2 Safe at Home 3 Read your Statement 4 Useful
What Retailers Need to Know - Credit Card Fraud is a Global Issue - Visa and MasterCard Take Steps to Address Device Tampering - How Vulnerable are You to Fraud? - Is Now the Time to Upgrade Your Equipment?
Skimming Prevention Kit For Business Owners 1 Contents Introduction:... 3 Debit Card Fraud:... 3 What is Debit Card Skimming?... 3 Who is Affected?... 3 Impact on Consumers... 3 Impact on Financial Institutions...
THE FIVE Ws OF EMV BY DAVE EWALD GLOBAL EMV CONSULTANT AND MANAGER DATACARD GROUP WHERE IS THE U.S. PAYMENT CARD INDUSTRY NOW? WHERE IS IT GOING? Today, payment and identification cards of all types (credit
COMITÉ EUROPÉEN DES ASSURANCES SECRETARIAT GENERAL 3bis, rue de la Chaussée d'antin F 75009 Paris Tél. : +33 1 44 83 11 73 Fax : +33 1 44 83 11 85 Web : cea.assur.org DELEGATION A BRUXELLES Square de Meeûs,
By Detective John Alvarez Corona Police Department High Technology Crimes Unit California Penal Code 530.5(a) defines Identity Theft: Every person who willfully obtains personal identifying information,
PIN Pad Security Best Practices Introduction The payment industry and card associations adopted PED and PCI PED requirements because of concerns that sophisticated criminal organizations may have the resources
Crime Prevention: A Guide for Small Businesses Text File Slide 1 Crime Prevention: A Guide for Small Businesses Welcome to SBA s online training program, Crime Prevention: A Guide for Small Businesses.
Protecting Yourself from Identity Theft Guide 4 Because you don t have to be the next victim Desert Schools Money Matters Series Guiding you toward financial success Table of Contents How ID theft happens.............................
PAYMENT SECURITY Best Practices At VeriFone, the protection of cardholder information is a top priority. To ensure merchants have secure payment solutions for their customers, and to help protect merchants
EBF ref. 2283 Brussels, November 2008 16 th European Report on Bank Robberies Executive Summary The problem of robberies is constant and will remain as long as money exists. Recently, countries have had
Program Name Staff Responsible for Lesson MVCTC EL/Civics Program Mary Ann Oatney Date(s) Used 11/2007 Civics Category Civics Objective Time Frame to Complete Lesson EFL(s) II. Civics Participation II.
IDENTITY ALERT: The Fight to Defend Your Identity and Personal Information A frightening crime with an untraceable weapon, identity theft is creating anxiety across the country. In fact, 2 out of 3 Americans
Tool 1: Assessing Robbery Risk Physical Security Checklist and Inventory Any assessment of robbery risk begins with an evaluation and inventory of the measures you are already taking as a financial institution.
BRANCH: Date: Section 1 Physical Vulnerability 1. Do all office windows permit an unobstructed view of the bank s interior? 2. Are all exterior doors and windows equipped with tamper-resistant locks? 3.
Security Guide for electronic transactions UniBank is a division of Teachers Mutual Bank Limited Teachers Mutual Bank Limited ABN 30 087 650 459 AFSL/Australian Credit Licence 238981 Who We Are UniBank
Target Security Breach Lessons Learned for Retailers and Consumers 2014 Pointe Solutions, Inc. PO Box 41, Exton, PA 19341 USA +1 610 524 1230 Background In the aftermath of the Target breach that affected
2010 International Conference on Business and Economics Research vol.1 (2011) (2011) IACSIT Press, Kuala Lumpur, Malaysia Use of biometrics to tackle ATM fraud Lawan Ahmed Mohammed King Fahd University
RULE No. 01-2007 1 (dated November 21, 2007) "Whereby Minimum Security Standards are stipulated for the Banking Entities" THE BOARD OF DIRECTORS using its legal authority, and WHEREAS: Pursuant to Numeral
Retail/Consumer Client Internet Banking Awareness and Education Program Table of Contents Securing Your Environment... 3 Unsolicited Client Contact... 3 Protecting Your Identity... 3 E-mail Risk... 3 Internet
Sound Business Practices for Businesses to Mitigate Corporate Account Takeover This white paper provides sound business practices for companies to implement to safeguard against Corporate Account Takeover.
Small businesses: What you need to know about cyber security March 2015 Contents page What you need to know about cyber security... 3 Why you need to know about cyber security... 4 Getting the basics right...
Identity Theft Awareness: Don t Fall Victim to these Common Scams We want you to understand what identity theft is, how it happens, and how to protect yourself. Please read and familiarize yourself with
Online Banking Customer Awareness and Education Program Electronic Fund Transfers: Your Rights and Responsibilities (Regulation E Disclosure) Indicated below are types of Electronic Fund Transfers we are
Credit and Debit Card Security Tips Many of these tips are just common sense and others are tips to keep in mind when doing a transaction, at ATMs, restaurants and merchants. Be careful with your PIN Always
AVOIDING ONLINE THREATS CYBER SECURITY MYTHS, FACTS, TIPS ftrsecure.com Can You Separate Myths From Facts? Many Internet myths still persist that could leave you vulnerable to internet crimes. Check out
Need to be PCI DSS compliant and reduce the risk of fraud? NCR Security lessens your PCI compliance burden and protects the integrity of your network An NCR White Paper Experience a new world of interaction
v Note: Please follow these guidelines for your safety as you enjoy the convenience of technology. However these guidelines are general; therefore, specific precautions may be taken as warranted by the
WRITTEN TESTIMONY BEFORE THE SENATE COMMITTEE ON THE JUDICIARY HEARING ON PRIVACY IN THE DIGITAL AGE: PREVENTING DATA BREACHES AND COMBATING CYBERCRIME FEBRUARY 4, 2014 TESTIMONY OF JOHN MULLIGAN EXECUTIVE
ADDRESS 2 Thomas More Square London E1W 1YN WEBSITE www.financialfraudaction.org.uk DIRECT LINE 020 3217 8436 NEWS RELEASE EMAIL firstname.lastname@example.org Deception scams drive increase in financial fraud
SECURITY SOLUTIONS BANKING AND FINANCE Pacom has developed a distinguished reputation as a global leader in the field of remote security management for the banking and financial market. Over 25 years of
Online Security Tips Is your computer set to automatically check for software and security updates? Do you type your name in search engines to see what personal information is online? Have you customized
FRAUD ALERT THESE SCAMS CAN COST YOU MONEY Phishing spear phishing vishing smishing debit card skimming fake check scams THE COMMON SENSE PRECAUTIONS INSIDE CAN KEEP YOU SAFE! SCHEMES SCAMS FRAUDS Criminals
Franchise Data Compromise Trends and Cardholder Security Best Practices December, 2010 Franchise Data Security Agenda Cardholder Data Compromise Overview Breach Commonalities Hacking Techniques Franchisee
The Basics of Home Security Topics Covered: Home Security Basics Home Security Guides Home Security Products and Services The Value of Insurance in Home Protection Top Ten Tips for Your Home Security Essentials
SECURITY IS EVERYONE S RESPONSIBILITY Group Security ATM Card Skimming and PIN Capturing Customer Awareness Guide What is ATM Card Skimming and PIN Capturing? ATM Skimming and Personal Identification Number
SMALL BUSINESSES WHAT YOU NEED TO KNOW ABOUT CYBER SECURITY ONE CLICK CAN CHANGE EVERYTHING SMALL BUSINESSES My reputation was ruined by malicious emails ONE CLICK CAN CHANGE EVERYTHING Cybercrime comes
September 2014 EMV and Small Merchants: What you need to know Mike English Executive Director, Product Development Heartland Payment Systems 2014 Heartland Payment Systems, Inc. All trademarks, service
PCI Compliance for Healthcare Best practices for securing payment card data In just five years, criminal attacks on healthcare organizations are up by a stunning 125%. 1 Why are these data breaches happening?
Visa Inc. PIN Entry Device Requirements The following information is applicable for Visa Inc. regions. Visa Inc. regions include Asia-Pacific (AP); Central and Eastern Europe, Middle East and Africa (CEMEA);
Anti-skimming ATM Lobby Card Access Control READER Anti-skimming ATM Lobby Card Access Control Skimming is growing a world-wide problem. Nowadays, increasing facts of skimming attacks on ATM Access Control
How crime can undermine the convenience of cash White Paper next > > How crime can undermine the convenience of cash 3 > Three categories of attack scenarios 5 > Protection against physical attacks 5 >
Secure Card Reader Authenticators When it comes to card reading security and reliability Merchants, retailers and financial institutions rely on MagTek. Secure card reader authenticators (SCRAs) capture
MIS5206 Week 13 Your Name Date 1. When conducting a penetration test of an organization's internal network, which of the following approaches would BEST enable the conductor of the test to remain undetected
A guide to access control for manufacturing sites What is access control? Access control provides the ability to control, monitor and restrict the movement of people, assets or vehicles, in, out and round
WRITTEN TESTIMONY BEFORE THE SENATE COMMITTEE ON COMMERCE, SCIENCE, & TRANSPORTATION HEARING ON PROTECTING PERSONAL CONSUMER INFORMATION FROM CYBER ATTACKS AND DATA BREACHES MARCH 26, 2014 2:30 PM TESTIMONY
PCI Data Security Information Services & Cash Management This self-directed learning module contains information you are expected to know to protect yourself, our patients, and our guests. Target Audience:
Contents Click on a title below to jump straight to that section. What is credit card fraud? Types of credit card fraud Current scams Keeping your card and card details safe Banking and shopping securely
Helping you to protect yourself against fraud and financial crime first direct takes fraud & other financial crimes very seriously. Even though we have market-leading fraud detection systems, we want you
My main responsibility as a Regional Account Manager for IMD is obtain the absolute lowest possible merchant fees for you as a business. Why? The more customers we can save money, the more volume of business
Identity Theft Crime Victim Assistance Kit INTRODUCTION In the course of a busy day, you may write a check at the grocery store, charge tickets to a ball game, rent a car, mail your tax returns, change
Part 1: Internal & External Data Breach Vulnerabilities Presented on: Thursday, February 12, 2 3 ET Co presented by: Ann Davidson VP of Risk Consulting at Allied Solutions Joe Majka CSO at Verifone 1 Breakdown
What is Your ATM Managed Services Number? Identifying the hidden opportunities that await your bank through ATM Managed Services In today s highly regulated operating environment, banks are facing shrinking
Protecting Yourself from Identity Theft Identity theft is everywhere. In fact, according to a 2013 report by Javelin Research, there is one incident of identity fraud every two seconds. While we cannot
Deterring Identity Theft The evolving threats of Identity Theft The Federal Trade Commission estimates that as many as 9 million Americans have their identities stolen each year. Identity theft complaints
Accenture Payment Services Payments Transformation - EMV comes to the US In 1993 Visa, MasterCard and Europay (EMV) came together and formed EMVCo 1 to tackle the global challenge of combatting fraudulent
INSURANCE ADVICE ON HOME SECURITY Prepared by the Association of British Insurers (ABI) and the Home Office Association of British Insurers 51 Gresham Street London EC2V 7HQ 020 7600 3333 www.abi.org.uk
Commercial Banking Customers Securing Your Business s Bank Account Trusteer Rapport Resource Guide For Business Banking January 2014 Table of Contents 1. Introduction 3 Who is Trusteer? 3 2. What is Trusteer
Active E mail Phishing Threat from DISS Erie County has been notified of an active phishing e mail threat targeting government agencies and have received reports of a wellcrafted phishing email circulating
MASSACHUSETTS IDENTITY THEFT RANKING BY STATE: Rank 23, 66.5 Complaints Per 100,000 Population, 4292 Complaints (2006) Updated January 17, 2009 Current Laws: Identity Crime: A person is guilty of identity
PROTECT YOUR AUTOMATIC TELLER MACHINES AGAINST LOGICAL FRAUD FROM SKIMMING TO THE LOGICAL FRAUD, THE NEW COMING ATM AND KIOSK RISK ABSTRACT 4 WHICH ARE THE RISKS ASSOCIATED TO AN ATM NETWORK 4 ATM EMERGING
Fraud Investigation and Education FIS www.fisglobal.com Phishing What is it? Phishing is a technique used to gain personal information for purposes of identity theft, using fraudulent e mail messages that
PROTECT YOURSELF AND YOUR IDENTITY CHASE IDENTITY THEFT TOOL KIT At Chase, we work hard to pro v help prepare you for whatever h Convenient Reference for Important Contacts: Chase Identity Theft Center
PROTECTING YOURSELF FROM IDENTITY THEFT The Office of the Attorney General of Maryland Identity Theft Unit CONTENTS 1) What is Identity Theft? 2) How to Protect Yourself From ID Theft. 3) How to Tell If
STAR has teamed up with Prevention of Fraud in Travel (PROFiT) and the Fraud Intelligence Network (FIN) to offer our members the best advice about fraud prevention. We recognise the increasing threat of
Another Legal Guide from Bonallack & Bishop Solicitors 80 PRACTICAL TIPS TO HELP COMBAT ALL YOU NEED TO KNOW INTRODUCTION... Over the last few years, identity theft has become one of the fastest growing
Tahoe Tech Group LLC Cyber Security Briefing Truckee Donner Chamber of Commerce March 6, 2015 Tahoe Tech Group serves as your technology partner with a focus on providing cost effective and long term solutions.
FLIP (Financial Literacy in Practice) February 2015 IDENTITY THEFT OVERVIEW This resource complements the material in Operation Financial Literacy. It has been written to address current issues which specifically
Small businesses: What you need to know about cyber security Contents Why you need to know about cyber security... 3 Understanding the risks to your business... 4 How you can manage the risks... 5 Planning
Practical guide for secure Christmas shopping Navid 1 CONTENTS 1. Introduction 3 2. Internet risks: Threats to secure transactions 3 3. What criteria should a secure e-commerce page meet?...4 4. What security
CASE STUDIES Examples of analytical experiences detecting fraud and abuse with RiskTracker Account Activity Analysis System The following are descriptions of actual situations encountered by BANKDetect
ii IBM MSS INDUSTRY OVERVIEW: FINANCIAL RESEARCH AND INTELLIGENCE REPORT RELEASE DATE: NOVEMBER 5, 2014 BY: JOHN KUHN, SENIOR THREAT RESEARCHER iii TABLE OF CONTENTS EXECUTIVE OVERVIEW... 1 MAJOR FINANCIAL
Cyber Security CHAD KNUTSON SECURE BANKING SOLUTIONS 2014 SECURE BANKING SOLUTIONS, LLC Presenter Chad Knutson Senior Information Security Consultant Masters in Information Assurance CISSP (Certified Information
EMV in Hotels Observations and Considerations Just in: EMV in the Mail Customer Education: Credit Card companies have already started customer training for the new smart cards. 1 Questions to be Answered
October 2014 EMV and Restaurants: What you need to know Mike English Executive Director, Product Development Heartland Payment Systems 2014 Heartland Payment Systems, Inc. All trademarks, service marks
1 TMCEC CYBER SECURITY TRAINING Agenda What is cyber-security? Why is cyber-security important? The essential role you play. Overview cyber security threats. Best practices in dealing with those threats.