Spitting Cash: ATM Jackpotting Attacks Surged in 2025
Dark Reading
by Jai VijayanFebruary 23, 2026
AI-Generated Deep Dive Summary
The surge in ATM jackpotting attacks in 2025 has cost banks over $20 million, marking a significant increase from previous years. These attacks involve criminals exploiting vulnerabilities in ATMs to dispense cash without authorization. The FBI reported 700 such incidents nationwide last year and over 1900 since 2020. This spike highlights a concerning trend where attackers use malware like Ploutus, which targets the XFS layer in ATM software to bypass bank authorization systems and steal funds quickly.
Criminals have employed various methods, including replacing hard drives with malware-infected versions or tampering with internal systems. The Department of Justice has indicted 93 individuals, including members of the Tren de Aragua group, for deploying such attacks. These operations often involve organized crime groups exploiting weaknesses in ATM security, leading to rapid cash withdrawals that are difficult to detect until after the fact.
The financial impact is substantial, with losses exceeding $20 million last year alone. This underscores a critical vulnerability in ATM infrastructure, as many machines remain susceptible to basic exploitation techniques. While banks have focused on securing digital systems like apps and databases, physical security measures for ATMs have often been overlooked.
Experts warn that the increasing sophistication of these attacks, combined with the involvement of organized crime groups, poses a significant threat to financial institutions. Companies like Diebold Nixdorf recommend enhancing ATM security through improved access controls, encryption, regular system updates, and tamper-detection alarms. These measures are essential to mitigate risks posed by
Verticals
securitytech
Originally published on Dark Reading on 2/23/2026