May 20, 2024

North Korean hackers are turning emails into real-life ATM cash withdrawals

Operation FastCash 2.0 may be combining North Korea-linked hackers and real-world gangs to collect money for the DPRK

North Korea-linked hackers have restarted a financial cybercrime campaign targeting international ATMs and fraudulent transfers, with activity observed as recently as Feb. 2020, according to a new series of alerts issued by the U.S. Cyber and Infrastructure Security Agency (CISA).

Now, CISA believes that the “BeagleBoyz” cybercriminals behind the 2018 “FastCash” hacks are back. The hackers triggered thousands of ATMs to simultaneously spit out paper bills for coordinated periods of time in North America, East Asia and Africa, where collaborating local gangs like the Yakuza picked up the physical money.

Become a member for less than $4 per week.

  • Unlimited access to all of NK News: reporting, investigations, analysis
  • The NK News Daily Update, an email newsletter to keep you in the loop
  • Searchable archive of all content, photo galleries, special columns
  • Contact NK News reporters with tips or requests for reporting
Get unlimited access to all NK News content, including original reporting, investigations, and analyses by our team of DPRK experts.
Subscribe now

All major cards accepted. No commitments – you can cancel any time.