Two men were charged yesterday for allegedly hacking ATMs to make them vomit bills.
The hacking method, known as ATM “jackpotting” recently spread to the United States after being an issue in Asia and Europe for years. The security blog Krebs on Security first reported in January that the US Secret Service had been alerting banks that hackers were installing hardware and software in US ATMS that turned the machines into automatic jackpot slots.
Krebs obtained a memo that Secret Service was sending to financial institutions. “The targeted stand-alone ATMs are routinely located in pharmacies, big box retailers, and drive-thru ATMs,” the memo read. “During previous attacks, fraudsters dressed as ATM technicians and attached a laptop computer with a mirror image of the ATM’s operating system along with a mobile device to the targeted ATM.”
Now the US Department of Justice is cracking down on jackpotters. Yesterday, the DOJ announced it had charged Alex Alberto Fajin-Diaz of Spain, and Argenys Rodriguez of Springfield, Massachusetts with bank fraud for their alleged involvement in an ATM jackpotting scheme.
According to the DOJ, police in Cromwell, Connecticut were responding to a report from Citizens Bank investigators about an ATM attack when they found Rodriguez and Fajin-Diaz by an ATM that had been hacked with jackpotting malware and was spewing $20 bills. The police searched the suspects’ car to find hacking tools and $9,000 in $20 bills.
The maximum term of imprisonment for bank fraud is 30 years.