Categories: Cyber Crime

2 million stolen from gas station ATMs with Bluetooth-enabled skimmers

A criminal organization hit gas station ATMs located in South America. The gang used Bluetooth-enabled skimmers to steal 2 million dollars from customers.

Here we are again to write on another huge Credit Card theft that hit ATMs located at Gas Stations  in Texas, Georgia, and South Carolina. US prosecutors have charged 13 members of a criminal gang accused of stealing $2 million from customers,  the gang used a Bluetooth-enabled skimmers hidden inside pump ATMs.

The  Bluetooth-enabled skimmers used is an undetectable device are able to capture credit card data, this information were used to clone customers’ card  and use them to  draw cash  from ATMs in other states.

The skimmers were installed internally ATMs and was not detectable by visual inspection, criminals used Bluetooth channel to take the stolen card information. Be aware, the criminals captured also customers PIN from the gas pumps, the cloned card were used to withdraw money from the ATMs in New York. The criminals preferred to hit Gas Station ATMs, and not the bank ATMs, that are generally better protected.

Between March 2012 and March 2013, the gang has stolen $2.1 million from ATMs in California, Manhattan and Nevada, the criminals adopted the necessary precautions to avoid detection, for example making transaction under the $10,000 threshold used to trigger control fraud.

 

The criminals have spread the stolen amount in at least 70 different bank accounts to make harder its localization.

“By using skimming devices planted inside gas station pumps, these defendants are accused of fueling the fastest growing crime in the country. Cybercriminals and identity thieves are not limited to, any geographic region, working throughout the world behind computers.” “Each of the defendants’ transactions was under $10,000. They were allegedly structured in a manner to avoid any cash transaction reporting requirements imposed by law and to disguise the nature, ownership, and control of the defendants’ criminal proceeds. From March 26, 2012, to March 28, 2013, the defendants are accused of laundering approximately $2.1 million.said Manhattan District Attorney Cyrus R. Vance.
All the defendants are charged with Money Laundering, four members of the gang (Garegin Spasrtalyan, age 40, Aram Martirosian, age 34, Hayk Dzhandzhapanyan, age 40, and Davit Kudugulyan, age 42) considered as the leaders are charged with Money Laundering theft and possession of a forgery device and forgery instruments.
The principal problems in a data breach is persecution of criminals that operate on a large-scale, in many cases like the attack against Target retailer, the data are sold on the underground market instead directly used by the thieves. Law enforcement has also noted that cyber criminals speculated on the sale of stolen credit card data with supplementary information (e.g. Geographic region) to increase the value of commodities.
Technological evolution is favoring criminals that could adopt for their illegal activities devices, like Bluetooth-enabled skimmers, even more sophisticated and had to detect, investigators believe that the attacks against gas station have gone undetected for a long period.

 If you do not take more security measures, such as the use of credit card based on a microchip, the risk to users can be greatly enhanced.

 

[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs –  Credit Card data theft, Bluetooth skimmers)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Recent Posts

Cisco addressed high-severity flaws in IOS and IOS XE software

Cisco addressed multiple vulnerabilities in IOS and IOS XE software that can be exploited to…

3 hours ago

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Google's Threat Analysis Group (TAG) and Mandiant reported a surge in the number of actively…

10 hours ago

Google addressed 2 Chrome zero-days demonstrated at Pwn2Own 2024

Google addressed two zero-day vulnerabilities in the Chrome web browser that have been demonstrated during…

22 hours ago

INC Ransom stole 3TB of data from the National Health Service (NHS) of Scotland

The INC Ransom extortion group hacked the National Health Service (NHS) of Scotland and is threatening…

1 day ago

CISA adds Microsoft SharePoint bug disclosed at Pwn2Own to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a Microsoft SharePoint vulnerability disclosed at the…

1 day ago

The DDR Advantage: Real-Time Data Defense

This is the advantage of Data Detection and Response (DDR) for organizations aiming to build…

1 day ago

This website uses cookies.