Criminals are increasingly using "jackpotting" malware to force ATMs to dispense cash without authorization.

Key points

• How it works: Hackers gain physical access to an ATM’s internal computer, often using generic keys, to install malware that overrides the bank’s security and forces the machine to spit out money.
• Outdated technology: Many ATMs run on obsolete operating systems like Windows 7, which contain known security vulnerabilities that hackers can easily exploit.
• Rising threat: The FBI reports a significant surge in these attacks, with nearly 1,900 incidents since 2020 and over $20 million in losses in 2025 alone.
• Security measures: Banks are being urged to secure physical access to machines, disable USB ports, and monitor for suspicious software activity to prevent these breaches.
• Consumer safety: While these attacks target banks directly, customers should still use well-lit, high-traffic ATMs and report any machine that behaves erratically or appears tampered with.

Although jackpotting attacks steal money from banks rather than individual accounts, the financial losses often lead to higher fees and stricter policies for everyday customers. Staying vigilant at the ATM helps you avoid not only these malware-based thefts but also common skimming scams that directly target your personal funds.