{
	"id": "5f27fc1a-cf8f-4bf4-bf6f-957be26cca14",
	"created_at": "2026-04-06T01:31:06.633418Z",
	"updated_at": "2026-04-10T03:20:49.581968Z",
	"deleted_at": null,
	"sha1_hash": "ba4fe9510276123fbb79bcdc5f453bc4110d9a59",
	"title": "EAST Publishes European Fraud Update 2-2018",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 163050,
	"plain_text": "EAST Publishes European Fraud Update 2-2018\r\nBy Lachlan Gunn\r\nPublished: 2018-07-05 · Archived: 2026-04-06 00:58:27 UTC\r\n05Jul05/07/2018\r\nEAST has published its second European Fraud Update for 2018. \r\nThis is based on country crime updates given by representatives of 18 countries in the Single Euro Payments Area\r\n(SEPA), and 3 non-SEPA countries, at the 45th EAST meeting held in The Hague on 6th June 2018.\r\nPayment fraud issues were reported by fifteen countries.  Seven countries reported card-not-present (CNP) as a\r\nkey fraud driver.  Two countries reported attempted ‘Forced Post’ fraud, possible when some point of sale (POS)\r\nterminals allow the ‘force sale’ functionality.  One country reported a new form of malware on android mobile\r\nphones, distributed with a fake application uploaded from third-party android stores.  Another country reported\r\ncases of SIM swap fraud, where fraudsters authorise a bank transfer by switching the customer’s mobile phone\r\nnumber over to a new SIM and intercept the authorisation message.  To date in 2018 the EAST Payments Task\r\nForce (EPTF) has published five Payment Alerts covering phishing, malware on mobile phones, fraudulent mobile\r\nApps and CNP fraud.\r\nhttps://www.association-secure-transactions.eu/east-publishes-fraud-update-2-2018/\r\nPage 1 of 2\n\nATM malware and logical security attacks were reported by nine countries.  Five of the countries reported ATM\r\nrelated malware.  In addition to Cutlet Maker (used for ATM cash-out) a new variant called WinPot has been\r\nreported – this is used to check how many banknotes are in an ATM.  Six countries reported the usage (or\r\nattempted usage) of ‘black-box’ devices to allow the unauthorised dispensing of cash.  To date in 2018 the EAST\r\nExpert Group on All Terminal Fraud (EGAF) has published seven related Fraud Alerts. To help counter these\r\nthreats Europol, supported by EAST EGAF, has published a document entitled ‘Guidance and Recommendations\r\nregarding Logical attacks on ATMs’.  It covers mitigating the risk, setting up lines of defence and identifying and\r\nresponding to logical attacks.  This is available in four languages: English, German, Italian and Spanish.\r\nCard skimming at ATMs was reported by fourteen countries.  For the first time one country reported the arrest of a\r\nChinese national in connection with such attacks.  The usage of M3 – Card Reader Internal Skimming devices\r\nremains most prevalent.  This type of device is placed at various locations inside the motorised card reader behind\r\nthe shutter.  Six countries reported such attacks.  One country reported the use of M2 – Throat Inlay Skimming\r\nDevices.  Skimming attacks on other terminal types were reported by five countries, four of which reported such\r\nattacks on unattended payment terminals (UPTs) at petrol stations.  To date in 2018 EAST EGAF has published\r\nten related Fraud Alerts.\r\nYear to date International skimming related losses were reported in 31 countries and territories outside SEPA and\r\nin 3 within SEPA.  The top three locations where such losses were reported remain Indonesia, the USA and India.\r\nThree countries reported incidents of Transaction Reversal Fraud (TRF), two of which reported new attack\r\nvariants.  To date in 2018 EAST EGAF has published four related Fraud Alerts.\r\nRam raids and ATM burglary were reported by eight countries.  Six countries reported explosive gas attacks, one\r\nof which reported such attacks against ATS machines for the first time.  Another reported that explosive gas\r\nattacks against ATMs have started for the first time.  Five countries reported solid explosive attacks.  The spread\r\nof such attacks is of great concern to the industry due to the risk to life and to the significant amount of collateral\r\ndamage to equipment and buildings.  To date in 2018 the EAST Expert Group on ATM \u0026 ATS Physical Attacks\r\n(EGAP) has published five related Physical Attack Alerts.\r\nThe full Fraud Update is available to EAST Members (National and Associate).\r\nSource: https://www.association-secure-transactions.eu/east-publishes-fraud-update-2-2018/\r\nhttps://www.association-secure-transactions.eu/east-publishes-fraud-update-2-2018/\r\nPage 2 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"Malpedia",
		"ETDA"
	],
	"references": [
		"https://www.association-secure-transactions.eu/east-publishes-fraud-update-2-2018/"
	],
	"report_names": [
		"east-publishes-fraud-update-2-2018"
	],
	"threat_actors": [],
	"ts_created_at": 1775439066,
	"ts_updated_at": 1775791249,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/ba4fe9510276123fbb79bcdc5f453bc4110d9a59.pdf",
		"text": "https://archive.orkl.eu/ba4fe9510276123fbb79bcdc5f453bc4110d9a59.txt",
		"img": "https://archive.orkl.eu/ba4fe9510276123fbb79bcdc5f453bc4110d9a59.jpg"
	}
}