Protecting ATMs and point-of-sale terminals

Online since 31.08.2016 • Filed under Industry news • From Issue 4 - September 2016 - February 2017 page(s) 12
Protecting ATMs and point-of-sale terminals

Kaspersky Embedded Systems Security, from Kaspersky Lab, is a targeted enterprise-grade solution designed to protect ATMs, point-of-sale systems and point-of-service machines.

Aimed at protecting a diverse variety of Windowsbased platforms handling the most sensitive financial operations, Kaspersky Embedded Systems Security offers world-leading detection capabilities and new specialised security options.

ATM threats: physical and virtual

Financial organisations report that the most prevalent threats targeting their ATM fleets are of a physical nature, including skimming and ATM theft. However, cyber threats or attacks on a software level are catching up: banks are reporting an increasing number of incidents involving ATM malware. This aligns with Kaspersky Lab’s threat intelligence dating back to 2009. The most recent example actually replaces hardware card skimmers, but also allows attackers to force the infected ATM to dispense cash. One of the most damaging cybercriminal campaigns between 2014 and 2015, known as Carbanak, also included cash dispensing functionalities. This year Kaspersky Lab has observed the rapid development of these high-tech bank robberies.

Hardware and compliance specifics

Although ATMs and point-of-sale (POS) terminals are diverse, they share similar qualities. Typically, these machines are dedicated to one specific task and carry limited software. It is likely that ATMs connect to networks via slow 3G and wireless channels and are always geographically scattered. This presents additional security and management challenges. At the same time, compliance requirements are broad and do not necessarily bring the required level of protection. This landscape calls for a specialised solution.

Product highlights

‘The first challenge we had to solve was to squeeze the most up-to-date security technologies into a product designed to run on machines with limited capacity,’ comments Dmitry Zveginets, Kaspersky Embedded Systems Security Solution Business Lead, Kaspersky Lab. ‘Upgrade cycles for ATM and POS fleets are slow, and it is not uncommon to find a perfectly working machine that was built more than ten years ago, running similarly outdated software. We’ve created a new product compatible with seven generations of computer hardware that protects the system, even without an internet connection, and is highly flexible to meet the distinctive demands of financial organisations and relevant regulations. Additionally, we have included advanced protection technologies that bring financial security to a higher level.’ Besides ATMs and POS terminals, Kaspersky Embedded Systems Security, with its high reliability and low footprint, also protects ticket dispensers from threats. It supports all Windows versions – from Windows XP to Windows XP Embedded, Windows Embedded 8.0 Standard and Windows 10 IoT. The solution has the lowest system requirements and can run using just 256MB of memory and just 50MD.

Kaspersky Embedded Systems Security brings centralised reporting and management as well as a special Default Deny mode that blocks attempts to run any unauthorised executable code or drivers on ATMs and POS terminals. The solution is also integrated with the cloud-based Kaspersky Security Network to provide the most up-to-date threat intelligence and quickly respond to the latest attacks.

For more information, visit


Issue 4 - September 2016 - February 2017

Issue 4 - September 2016 - February 2017

This article was featured on page 12 of SABI Magazine Issue 4 - September 2016 - February 2017 .

Share this

10th Annual Business Process Management take of 21 Sept 18
Power Week Africa Conference 2018 take off 15 Sept 18

Subscribe to our Digital Magazine (free)