| 词条 | Draft:ATM Hacking |
| 释义 |
ATM Hacking CaseEric Salazar MontanoOn December 28thand 30th of 2017, Eric Salazar Montano, 33 years old, hacked ATM machines in Queens, New York and stole around a quarter of a million dollars.[1]Montano is highly skilled with technology and is now 34 years old from Flushing, NY. He used to live in Yonkers, NY, College Point, NY, and Ballston Spa, NY. [2] Method of OperationEric Salazar Montano and an accomplice dressed up as technicians to look inconspicuous while hacking the ATM in Queens, New York on both December 28 and December 30, 2017[3] The ATM that was hacked on December 28 was located at a grocery store in Kew Gardens, Queens.[4] On December 30, Montano and the accomplice hacked an ATM kiosk located in Queens Center Mall in Elmhurst, Queens.[5] Other unknown accomplices approached the ATMs after being hacked and collected money that was automatically dispensed by Montano, with no bank card or PIN numbers required.[6] In total, $154,000 was stolen on December 28, and $87,000 was stolen on December 30.[7] How Did This Happen? An Analysis of Ploutus.DMontano used a version of software named Ploutus.D to carry out his theft. This software is commonly used in jackpotting cases, or cases where perpetrators turn ATM devices into makeshift slot machines through dispensing cash without use of a PIN or ATM card. Ploutus.D has been around since 2016, with its original variant, Ploutus, dating back to 2013 [8]. The software is able to be installed on any ATM running Windows 10, 8, 7, or XP. It is installed via a one-time installation through USB or CD-ROM. Montano dressed up like a service technician, installed the program, and commanded the machine to dispense money via external keyboard commands. Many individuals linked to Montano then used the ATMs, resulting in hundreds of thousands of dollars being stolen [9]. The keyboard commands are as follows: F8 -- open command menu F1 -- generate ATM ID (fake ID to eliminate tracking services from manufacturer) F2 -- activate Ploutus.D software F3 -- dispense cash to specific dollar amount ATM Hacking: Legal RamificationsMr. Montano was arraigned on March 13th, 2018 pursuant to charges of second-degree grand larceny, first-degree computer tampering, second-degree criminal possession of a forged instrument and computer trespassing as a result of stealing more than $240,000 in cash--if convicted, Mr Montano faces a maximum sentence of 15 years in prison.[https://qns.com/story/2018/03/15/flushing-man-hit-jackpot-rigging-atms-steal-250000-cash-da/]Mr. Montano was described as a 'family man with no criminal record' by his attorney, Victor Knapp, Esq.[https://www.foxnews.com/us/man-accused-of-hacking-atms-to-dispense-cash-without-card] Mr. Montano's accomplice and co-defendant, Jose Silva-Bautista, was arrested and arraigned by failed to show up for his scheduled court date. ATM's AffectedMontano and other jackpotting criminals like him specifically targeted Diebold Nixdorf Automated Teller Machine's due to their vulnerability to the Ploutus.D software. Financial InstitutionATM hacking and its common counterpart, Jackpotting, has drastic implications on financial institutions. Although end to end, every type of victim loses in these cases, the largest hit is bound to the financial institution due to such a large amount of money lost. When these financial institutions lose money they face a loss of customers, business partners, and trust in the public eye. As this new phenomenon rises, these institutions have lost over one million dollars. The liability relies on financial institutions to cover all damages and loses. One problem relies on the bank's uses of Diebold ATMs which are known for their faulty security. [https://accelerite.com/blogs/atm-jackpotting-financial-institutions-lose-money-and-trust/] [https://www.vantiv.com/vantage-point-fi/safer-payments/qa-atm-jackpotting-and-what-it-means-for-your-financial-institution] ImplicationsComputer crimes, including ATM hacking, involve a variety of legal implications. In the United States, computer crimes tend to range from class B misdemeanors to class B felonies. Class B misdemeanors carry a punishment of up to six months in prisons, as well as possible fines up to $1,000. Class B felonies carry a punishment of up to twenty years in prison, as well as possible fines up to $15,000. It is really common for those accused of computer crimes to also be charged with identity theft and/or larceny because of the nature of the crime. [https://www.hackerusa.com/blog/five-myths-about-the-cyber-world-2/] At the federal level, most individuals accused of hacking are charged under the Computer Fraud and Abuse Act (CFAA), which covers a range of different computer-related offenses. In most cases, if there are damages of more than $5,000 and the hacked information has been used for profit by the offender, then the crime will be charged as a felony. Under the CFAA, punishment may include fines up to $250,000 in addition to possible imprisonment for up to twenty years. Any persons conspiring to engage in any of the related illegal activities specified under the act can also be charged. Penalties vary depending on the specific situation, the degree of harm that was done, and the state in which the crime was committed. For example, in the state of Florida, computer crime penalties range from third to first-degree felonies. Each U.S. state has specific statutes regarding computer crimes. [https://statelaws.findlaw.com/florida-law/florida-computer-crimes-laws.html] Benton Campbell, the U.S. attorney for the Eastern District of New York emphasized the seriousness of computer crimes in the following statement: "Computer hacking and identity theft pose serious risks to our commercial, personal and financial security. Hackers, including those who commit their crimes from abroad, will find no refuge from the reach of U.S. criminal justice -- they will be found, prosecuted and convicted.” [https://grassodefense.com/federal-hacking-laws/] When an ATM has been compromised by a hacker, the card and pin verification combination become unnecessary. This could then cause problems for the banking institution as well as the individual. When an ATM is hacked, and the hacker, or an accomplice goes to retrieve the money, it all has to come from somewhere; and that somewhere is within the bank. This could cause the bank to lose money. [10] When a bank loses money, the possibilities range from bankruptcy, to loss of customers and everything in between. As the bank loses money, it runs out of profits. With no profits coming in, customers tend to lose money as well which in turn could lead them to stop banking with that particular institute, which will lead to a loss of customers. When too many customers leave a bank that causes the profit margins to decrease even more, and eventually this could all lead to bankruptcy. [11] The repercussions for individuals are not as grave as those for banking institutes, but that does not make them any less serious. When an individual falls victim to an ATM hacker this could cause them to stop trusting in those institutes. And what happens when one is walking around with huge sums of cash on their person? Many things. After all, where are you going to keep that kind of money? If you keep it at home, even if it's in a 'safe place', that does not guarantee that your money is safe. If someone were to break into your home, your money would be gone in a heartbeat. Being a victim of an ATM hack could potentially lead to much bigger things, such as fraud or identity theft. Hacking is just a gateway to more serious offenses. Assume you put your card information into a hacked ATM in the attempts to make a deposit. Whoever has hacked that machine now has access to your credit (or debit) card information, and could just as easily gain access to other personal aspects of your life. References |
| 随便看 |
|
开放百科全书收录14589846条英语、德语、日语等多语种百科知识,基本涵盖了大多数领域的百科知识,是一部内容自由、开放的电子版国际百科全书。