FASTCash (e306fe62-c708-11e8-89f2-073e396e5403)

Treasury has identified a sophisticated cyber-enabled ATM cash out campaign we are calling FASTCash. FASTCash has been active since late 2016 targeting banks in Africa and Asia to remotely compromise payment switch application servers within banks to facilitate fraudulent transactions, primarily involving ATMs, to steal cash equivalent to tens of millions of dollars. FBI has attributed malware used in this campaign to the North Korean government. We expect FASTCash to continue targeting retail payment systems vulnerable to remote exploitation.

Rows: 1
Use the filters above each column to filter and limit table data. Advanced searches can be performed by using the following operators:
<, <=, >, >=, =, *, !, {, }, ||,&&, **[empty]**, **[nonempty]**, **rgx:**
Learn more
TableFilter v0.7.2
https://www.tablefilter.com/
©2015-2025 Max Guglielmi
Close
?
Cluster A	Galaxy A	Cluster B	Galaxy B	Level
	Clear Malpedia		Clear Tool	Clear 1
FastCash (e8a04177-6a91-46a6-9f63-6a9fac4dfa02)	Malpedia	FASTCash (e306fe62-c708-11e8-89f2-073e396e5403)	Tool	1

FASTCash (e306fe62-c708-11e8-89f2-073e396e5403)

TableFilter v0.7.2