More than one hundred financial institutions turn to NCR’s multi-vendor APTRA Software Security to protect their ATMs – and their customers – from ‘inside-out’ skimming attacks
NCR Corporation, the ATMs, has sold more than 50,000 licenses of Solidcore for APTRA, an ATM software security application that prohibits the introduction of unauthorized code to an ATM. Solidcore for APTRA protects the system from “inside out” skimming attacks. These attacks, similar to those recently perpetrated in Russia, involve the insertion of malicious code onto the ATM – usually by someone with insider access to ATM.
Integrated within the NCR APTRA Software Security application, Solidcore for APTRA is the only proven security application to preserve system integrity and prevent malware on ATMs. More than 100 NCR customers around the world have turned to NCR to provide Solidcore for APTRA on their single and multi-vendor ATM networks. Solidcore Systems Inc. is a California-based provider of technology to protect critical IT infrastructure, from devices to data centers.
Rather than reacting to known attacks as they arise, Solidcore for APTRA proactively allows only authorised code to run. Specifically, Solidcore for APTRA automatically creates and updates the inventory of good code and limits the runtime environment to the code in that inventory, or whitelist.
In addition, authorised code cannot be modified, deleted or hijacked – the process in which malicious code replaces authorized code with itself.
In addition to APTRA Software Security, NCR provides a variety of ATM security features and applications:
– NCR’s latest family of ATMs, NCR SelfServ introduces a protected USB architecture that is self-contained within the ATM, helping mitigate the risk of fraudulent connection of unauthorized USB devices.
– Fraudulent Device Inhibitor (FDI) is an external illuminated hardware feature or kit that makes it difficult for criminals to attach foreign devices on or around an NCR ATM card reader.
– Intelligent Fraud Detection (IFD) is an approach to countering ATM fraud. Designed to be flexible, NCR IFD can detect a variety of fraudulent devices that criminals may attempt to add to the ATM fascia. The deployer receives an instant alert as soon as a fraudulent device has been added to the ATM, even before any fraud has taken place.
D.C.