Aimed at protecting a diverse variety of Windows-based platforms, handling the most sensitive financial operations, Kaspersky Embedded Systems Security brings world-leading detection capabilities as well as new specialised security options.
ATM threats: physical + virtual
Financial organisations report that the most prevalent threats targeting their ATM fleets are of a physical nature, including skimming and ATM theft. However, cyberthreats or attacks on a software level are catching up: banks are reporting an increasing number of incidents involving ATM malware. This aligns with our threat intelligence: Kaspersky Lab observes dedicated ATM malware starting from 2009. The most recent example actually replaces hardware card skimmers, but also allows attackers to force the infected ATM to dispense cash. One of the most damaging cybercriminal campaigns of 2014-2015, known as Carbanak, also included cash dispensing functionalities as well as other ATM-targeted malware. This year we have observed the rapid development of these high-tech bank robberies.
Unique hardware and compliance specifics
Although ATMs and Point-of-Sale terminals are very diverse, they share similar qualities. Typically these machines are dedicated to one specific task and carry a very limited number of software. Most likely these machines are limited-performance computers, often running outdated operating systems and software like Windows XP. It is also likely for ATMs to connect to the network via slow 3G and wireless channels and they are always geographically scattered. This presents additional security and management challenges. At the same time, compliance requirements including PCI DSS are very broad, and do not necessarily bring the required level of protection. This landscape calls for a specialised solution.
“The first challenge we had to solve was to squeeze in the most up-to-date security technologies in a product designed to run on machines with very limited capacity,”comments Dmitry Zveginets, Kaspersky Embedded Systems Security Solution Business Lead, Kaspersky Lab. “Upgrade cycles for ATM and PoS fleets are slow, and it is not uncommon to find a perfectly working machine that was built more than ten years ago, running similarly outdated software. We’ve created a new product compatible with seven generations of computer hardware, which protects the system, even without an internet connection, and is highly flexible, in order to meet the unique demands of financial organisations as well as regulations such as PCI DSS. On top of this we have included advanced protection technologies like the Default Deny mode that bring financial security to a higher level”.
Kaspersky Embedded Systems Security protects ATMs, PoS terminals and other specialised systems like ticket dispensers from all kinds of threats, with high reliability and a low footprint. It supports all Windows versions starting from Windows XP as well as Windows XP Embedded, Windows Embedded 8.0 Standard and Windows 10 IoT. The solution has the lowest system requirements and can run on systems with only 256 megabytes of memory and just 50 megabytes of disk space. It protects machines from cyberthreats, be it remote attacks, or the on-site compromise of a system via USB sticks.
Kaspersky Embedded Systems Security brings centralised reporting and management as well as a special Default Deny mode that blocks attempts to run any unauthorised executable code or drivers on ATMs and PoS terminals. The solution is also integrated with the cloud-based Kaspersky Security Network to provide the most up-to-date threat intelligence and quickly respond to the latest attacks.
To learn more about Kaspersky Embedded Systems Security visit our corporate website. The solution is available worldwide as a part of Kaspersky Lab’s enterprise portfolio.