• The FBI warned that Americans lost more than $20 million last year amid a massive surge in ATM “jackpotting” attacks, in which criminals use malware to force cash machines to dispense money. • According to a Thursday FBI flash alert, more than 700 ATM jackpotting incidents were reported last year alone in a significant spike compared to the roughly 1,900 total incidents reported across the United States since 2020. • These attacks can be carried out in minutes and target the software layer controlling an ATM’s physical hardware, using malicious tools such as the Ploutus malware. • Most often, they go undetected by financial institutions and ATM operators until the cash is already gone. • As the FBI explained, cash machines are designed to verify transactions through their bank before dispensing cash. • However, Ploutus bypasses this process entirely, allowing the criminals to issue commands directly to the ATM and trigger withdrawals on demand without a bank card, a customer account, or the bank’s approval.
Article Summaries:
- The FBI warned that Americans lost more than $20 million in 2025 due to a surge in ATM “jackpotting” attacks, in which criminals use malware to force cash machines to dispense money. Over 700 incidents were reported last year, a sharp rise from the roughly 1,900 cases recorded nationwide since 2020. The attacks exploit the Ploutus malware, which bypasses bank authorization by manipulating the ATM’s XFS software layer, allowing withdrawals without a card or account. Criminals typically gain physical access, swap or re‑install the ATM’s hard drive, and install the malware. In response, the FBI urged banks to audit for unauthorized removable storage and processes. The alert followed arrests of 87 members of the Tren de Aragua gang, who are facing severe prison sentences for their role in the scheme.
Sources: