This alert may not be shared outside your organization, Do Not Repost or send, place on other websites, List servers, or send to others via email, including other associations or parties. Members and Law enforcement use only. Contact us for any permissions. To do otherwise will result in the loss of membership.
Complete Story
02/21/2026
Cashing Out: ATM Jackpotting Attacks Surging Across US
Gov Info Security
Malware-wielding criminals "jackpotted" ATMs across the United States last year to walk away with $20 million in stolen cash.
The FBI, tracking that collective haul, warned ATM operators that these malware-fueled attacks are on the rise. Of the 1,900 ATM jackpotting attacks in U.S. cataloged since 2020, 700 of them - or one-third - occurred last year.
Jackpotting or cash-out attacks involve tricking an ATM into disgorging cash, typically after infecting it with a strain of malware that gives an attacker full control of the device.
A well-known strain of malware called Ploutus is among the types of malicious code being used in these hit. The malware "attacks the ATM itself rather than customer accounts, enabling fast cash-out operations that can occur in minutes and are often difficult to detect until after the money is withdrawn," according to a Thursday flash alert issued by the FBI.
More Info
Alerts
The FRPA alert system distinguishes us from other groups by gathering and providing information to law enforcement, retailers AND financial institutions.
more information
Resources
Your electronic library to help in fighting financial fraud for all of our partners.
more information