Hitachi outed as source of Indian ATM malware infection

Hitachi Payment Systems has admitted culpability for a breach of its ATM network in India that spawned a massive recall of debit cards by the nation's banks.

  13 1 comment

Hitachi outed as source of Indian ATM malware infection

Editorial

This content has been selected, created and edited by the Finextra editorial team based upon its relevance and interest to our community.

A report on the compromise conducted by audit outfit Sisa, pointed to a malware injection at Hitachi servers that went undetected for almost two months in mid-2016.

The malware compromised customer debit card details, leading India's top banks - including State Bank of India, HDFC Bank, ICICI Bank, Yes Bank and Axis Bank - to advise some customers to change PIN codes and to recall millions of debit cards. In the immediate aftermath of the breach being uncovered, the banks additionally blocked payments at international locations, reduced withdrawal limits and monitored unusual patterns.

A subsequent investigation by National Payments Corporation of India found that cases of illegal withdrawals were limited to 641 customers of 19 banks, and the total amount involved was 13 million rupees ($194,600).

Worryingly, the Sisa audit of Hitachi's payment switch was unable to determine the amount of data exfiltrated during the compromise period due to secure deletion by the malware.

Loney Antony, managing director, Hitachi Payment Services says: “Hitachi Payment Services regrets the inconvenience caused to banks and its customers due to this lapse in its security infrastructure. We assure you of our highest commitment to building a robust infrastructure in our systems and preventing such cyber frauds in future. We have further enhanced our infrastructure and will continue to undertake all mandatory and regulatory security measures as needed. We feel, together through a collaborative association with all our stakeholders (banks and regulators), we will be able to provide a safer system for financial transaction processing.”

Sponsored [Webinar] 2025 Fraud Trends: Synthetic Identity, AI and Incoming Mandates

Comments: (1)

Ketharaman Swaminathan

Ketharaman Swaminathan Founder and CEO at GTM360 Marketing Solutions

LOL. I thought this issue was forgotten after #CurrencySwitch. During the cash crunch caused by the recent demonetization in India, the longest queue I saw outside an ATM was at the bank whose ATM network was run by HDS and held responsible for the debit card data breach. 

[New Report] Managing Fraud Risks with Synthetic Data: A Practical Approach for Businesses ServicesFinextra Promoted[New Report] Managing Fraud Risks with Synthetic Data: A Practical Approach for Businesses Services Industry