FASTCash and INJX_Pure - How Threat Actors Use Public Standards for Financial Fraud

Explore the sophisticated techniques used by threat actors to exploit public standards for financial fraud in this 38-minute Black Hat conference talk. Delve into the INJX_Pure and Lazarus FASTCash malware families, examining how they leverage different publicly documented standards to perform "cash outs" at ATMs. Gain insights into the strong programming abilities and deep understanding of financial card transaction mechanics possessed by the malware authors and operators. Learn about the underlying mechanics of these attacks and their implications for financial security. Presented by Kevin Perlow, this talk offers valuable knowledge for cybersecurity professionals, financial institutions, and anyone interested in understanding advanced financial fraud techniques.

FASTCash and INJX_Pure: How Threat Actors Use Public Standards for Financial Fraud