twitter facebook rss

Tyupkin gang arrested by Europol

Posted by on January 7, 2016.

europolthinEuropol has disrupted an East European gang using the Tyupkin trojan to steal from bank ATMs. Eight people have been arrested following house raids in Romania and Moldova. Few details have been provided in the Europol announcement beyond ‘substantial losses across Europe to the ATM industry.’

Tyupkin is described here by Kaspersky. The report is dated October 2014, so we don’t know whether the current version is identical. Nevertheless, the earlier Tyupkin

  • affected Win 32-based ATMs
  • was active only at certain times overnight to reduce the likelihood of discovery
  • allowed the bad guys to interact directly and empty the cash cassette
  • includes anti-debug and emulation techniques
  • disables McAfee Solidcore

It isn’t likely that the malware will die with the arrest of this gang – but at least some ATMs will be safe for a while.

Leave a Reply

Your email address will not be published. Required fields are marked *

Submitted in: News, News_malware | Tags: