Cash in Hand

Cash in Hand

Three ways to protect off-premises ATMs

If your bank, credit union or non-bank organization operates ATMs in remote locations, such as convenience stores or shopping malls, a bank heist that occurred in Japan last year probably caught your attention.

According to news reports, fraudsters used 1,600 fake cards to withdraw money from multiple ATMs belonging to the same South African bank. In just a few hours, the coordinated attack—focused on ATMs in convenience stores—drained the bank of more than $13 million.

While the magnitude of this fraud is rare, it should give ATM operators pause to consider the level of security they have in place around their off-premises ATMs.

Off-premises ATMs can be easy targets for thieves because they often don’t have the same level of security or surveillance that financial institutions have in their own branches.

Also, as ATM operators continue the transition to EMV or “chip” technology for bank cards, experts warn that self-serve ATMs and gas pumps are becoming more of a target for thieves. That’s because criminals are rushing to make a buck while magnetic strip cards, seen as less secure, are still being accepted by these channels.

According to credit scoring agency FICO, from 2015 to 2016, the number of payment cards compromised at U.S. ATMs or point-of-sale systems rose by 70 percent. Further, a full 60 percent of those compromises occurred at non-bank ATMs, following a similar pattern noted the previous year. In a recent report about ATM skimming, the agency said criminal activity was highest in places like convenience stores.

So what can banks, credit unions and non-bank operators do to better protect their ATMs and their customers? Taking a multi-layered approach to security is best.

Regularly Inspect Your ATMs

Operators should regularly inspect all of their off-premises ATMs. Are they functioning properly? Do they appear to have been tampered with? Are they located in well lit, high traffic areas?

It sounds simple, but taking the time to ensure that all of your remote ATMs are inspected in person can help prevent issues and detect suspicious activity sooner.

Deploy High-Quality Video Surveillance

Ensure you have adequate video surveillance in place. This means surveillance cameras capturing the ATM machine and its surroundings, but also ATM cameras inside the machines that capture clear views of patrons’ faces.

One recommendation is to use an ATM camera with High Dynamic Range (HDR), a feature that merges multiple exposures into one image with the best balance of lighting possible. This capability can be invaluable in ATM settings where patrons’ faces are often backlit with bright sunlight.

Proper video surveillance not only helps address crimes like skimming and card trapping, but it can also help deter other types of fraud, such as the depositing of empty envelopes or counterfeit checks.

Use Integrated Video, Transaction Data and Analytics

Regularly monitoring transaction data for suspicious activity is essential to thwarting ATM fraud like skimming or “cashouts,” where thieves drain the ATM of large amounts of cash through nefarious means.

By deploying a video surveillance solution that’s integrated with ATM transaction data and intelligent analytics, you can very quickly detect potentially fraudulent transactions, or even just suspicious activity, like loitering around machines.

Integrated video solutions allow you to very rapidly sort through all of your transactions and find irregular activity, such as the same person making multiple transactions with different cards or someone standing in front of an ATM for a period of time without making a transaction (a possible sign of someone installing a skimming device).

By configuring alerts, the system can automatically notify you when it detects this type of activity.

This article originally appeared in the September 2017 issue of Security Today.

About the Author

Daniel Caggiula is the banking solutions manager at March Networks.

Featured

  • New Report Series Highlights E-Commerce Threats, Fraud Against Retailers

    Trustwave, a cybersecurity and managed security services provider, recently released a series of reports detailing the threats facing the retail sector, marking the second year of its ongoing research into these critical security issues. Read Now

  • Stay Secure in 2024: Updated Cybersecurity Tips for the Office and at Home

    Cyber criminals get more inventive every year. Cybersecurity threats continue to evolve and are a moving target for business owners in 2024. Companies large and small need to employ cybersecurity best practices throughout their organization. That includes security integrators, manufacturers, and end users. Read Now

  • Survey Finds Human Error is Cybersecurity Weakest Link

    Kaseya, provider of AI-powered cybersecurity and IT management software, recently released the results of its 2024 Kaseya Security Survey. IT professionals reported user behavior as their biggest cybersecurity challenge. Another important finding relates to the widespread adoption of artificial intelligence by both threat actors and defenders. The survey found that feelings are mixed as IT professionals learn to navigate this new industry game-changer. The results of the survey are featured in the Cybersecurity Survey Report 2024: Navigating the New Frontier of Cyber Challenges. Read Now

  • Report Analyzes Darknet Activity Targeting the 2024 United States Presidential Election

    Fortinet recently released its FortiGuard Labs Threat Intelligence Report: Threat Actors Targeting the 2024 U.S. Presidential Election, which reveals and analyzes threats tied to U.S.-based entities, voters, and the electoral process Read Now

Featured Cybersecurity

Webinars

New Products

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis. 3

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file. 3

  • PE80 Series

    PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

    ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening. 3