Hackers Can Now Take Cash From ATMs Without Cards or PINs

By Waleeja Khan|3 hours ago|
Hackers Can Now Take Cash From Atms Without Cards Or Pins

Hackers can now force ATM machines in Pakistan to release cash without using bank cards or customer details, after a new type of malware began spreading globally. The threat, known as “Ploutus”, allows criminals to take control of ATMs once they gain physical access to the machines. Banks across the country have been warned to tighten security immediately.

An advisory issued by 1LINK has been shared with all scheduled banks in Pakistan, alerting them to the growing risk.

How the Malware Works

Ploutus does not steal money from customer accounts. Instead, it takes control of the ATM itself. Once hackers gain physical access to the machine, they install the malware directly onto its system. After that, the ATM can be forced to dispense cash without using cards, PINs, or bank approval.

While earlier forms of ATM malware existed, Ploutus stands out because it can be adapted for different ATM brands with minimal effort. This means machines from multiple manufacturers could be vulnerable if security controls are weak or outdated.

Signs an ATM May Be Compromised

Banks have been advised to watch for both digital and physical warning signs. These include:

  • Unknown or suspicious software files on the ATM
  • Remote-access tools installed without approval
  • Unusual system programs running at startup
  • ATM doors opening outside scheduled maintenance times
  • Hard drives being removed or replaced
  • Machines suddenly going out of service without explanation

Steps Banks Have Been Asked to Take

To reduce the risk, banks have been urged to improve security at multiple levels:

Physical Security

Stronger locks, sensors, cameras, and closer monitoring of ATM access.

System and Hardware Protection

Encryption of hard drives, checks on system integrity, and automatic shutdowns if suspicious activity is detected.

Access Control

Blocking USB ports and external devices by default and allowing access only to approved personnel.

Network Monitoring

Limiting network connections to trusted systems and watching for unusual activity.

Logging and Audits

Keeping detailed records of system changes and regularly reviewing ATM activity.

Waleeja Khan

Sharing clear, practical insights on tech, lifestyle, and business. Always curious and eager to connect with readers.

Latest News

OpenAI smart speaker

OpenAI Reportedly Building a Smart Speaker With a Built-In Camera

WhatsApp Scheduled Messages feature

WhatsApp Could Soon Let Users Schedule Messages in Chats

Peshawar Iftar Time Today: 6th Ramadan (24 February 2026)

Peshawar Iftar Time Today: 6th Ramadan (24 February 2026)

Quetta Iftar Time Today: 6th Ramadan (24 February 2026)

Quetta Iftar Time Today: 6th Ramadan (24 February 2026)

Cybercrime Agency Detains Canadian National Hamza Ahmad Judicial Remand Ordered

Missing Canadian Researcher Hamza Found in NCCIA Custody, Remand Ordered

Lahore Iftar Time Today: 6th Ramadan (24 February 2026)

Lahore Iftar Time Today: 6th Ramadan (24 February 2026)

Islamabad Iftar Time Today: 6th Ramadan (24 February 2026)

Islamabad Iftar Time Today: 6th Ramadan (24 February 2026)

Karachi Iftar Time Today: 6th Ramadan (24 February 2026)

Karachi Iftar Time Today: 6th Ramadan (24 February 2026)

Secp Directs Unlisted Companies To Shift Physical Shares To Digital Form

SECP Directs Unlisted Companies to Shift Physical Shares to Digital Form

Gold and Silver Prices in Pakistan

Gold and Silver Prices in Pakistan Today, 24th February, 2026

Over 400 Trees Relocated For Rawalpindi Underpasses

Over 400 Trees Relocated for Rawalpindi Underpasses

Hyundai Announces Ex Factory Prices For Palisade Suv

Hyundai Announces Ex-Factory Prices for Palisade SUV

West Indies

Records Tumble as WI Hammer Zimbabwe in T20 WC 2026

Get Alerts