$20 million lost in 'jackpotting' ATM malware attacks in 2025, FBI reports — scheme forces machines to spit out cash, targets banks and ATM operators

The FBI has issued a warning about increasing malware attacks on ATMs, with a specific focus on "jackpotting" attacks that force machines to dispense cash. These attacks involve threat actors using generic keys to access ATM maintenance cabinets, loading malware onto the storage drive, and manipulating the machines to dispense money. The FBI reported over $20 million in losses from these attacks in 2025, with a significant rise in incidents in recent years. Financial institutions are advised to take steps like monitoring for unauthorized files, disabling USB ports, and enhancing security measures to combat these attacks. The vulnerabilities in ATMs, particularly those running on outdated operating systems like Windows 7, pose a significant risk that needs to be addressed promptly to prevent further financial losses.