41st EAST Meeting hosted by Bits AS in Norway

EAST National Members - badgeThe 41st Meeting of EAST National Members was hosted by Bits AS in Oslo, Norway on 8th February 2017.  National country crime updates were provided by 24 countries, and a global update by HSBC. Europol, the Norwegian Police and the Bundeskriminalamt (BKA) attended the meeting.

EAST Fraud Update 1-2017 will be produced later this month, based on the updates provided at the meeting.  EAST Fraud Updates are available on the EAST Website to EAST Members.

The 42nd Meeting of EAST National Members will be held on 7th June 2017 in The Hague.  This will be immediately followed by the 3rd EAST Financial Crime & Security (FCS) Forum on 8th/9th June 2017, also in The Hague.  While this is an open event, places are limited.  Interested? Check out the Agenda and register now to secure your place.

CDC Device Location Terminology and ATM Fraud Definitions

Terminology for locations of CDC Devices at ATMs and ATM Fraud DefinitionsThe EAST Expert Group on ATM Fraud (EGAF) has updated its guidelines on standardising terminology for locations of Card Data Compromise (CDC) devices at ATMs and also the definitions used to report and classify ATM fraud.  The new information can be found on the EAST website on the pages Terminology for locations of CDC Devices at ATMs and ATM Crime Definitions.  EAST has made this information publicly available to promote the usage of both the location terminology and the ATM fraud definitions worldwide, in order to assist the industry and law enforcement agencies to consistently classify all CDC devices, and to standardise definitions used when reporting ATM crime.

The document ‘Standardisation of Terminology for locations of Card Data Compromise devices at ATMs’ has been updated; a  new location has been added – D3. Card Reader Internal Skimming Device – and several other minor amendments have also been made.  This terminology is used in all EAST ATM Fraud Alerts and Fraud Updates and anyone in the industry or law enforcement finding a CDC device at an ATM is encouraged to use the terminology when making a report.  The document is available for download on the EAST Intranet to EAST members (National and Associate),

EAST EGAF will host a breakout session on Day One of the EAST Financial Crime and Security (FCS) Forum which will be held in The Hague on 8th/9th June 2017.

ATM Malware Criminals Apprehended

Five members of an international organised criminal group (OCG) have been arrested and three of them convicted so far as a result of a complex operation led by law enforcement agencies from Europe and Asia, with the active support of Europol’s European Cybercrime Centre (EC3).  One arrest was made by the Romanian National Police, three arrests by the Taiwanese Criminal Investigation Bureau and one arrest by the Belarusian Central Office of the Investigative Committee.  EC3 assisted the investigation by providing analytical support, organising operational meetings in Europe and Asia as well as analysing the seized data/ equipment.

This OCG is responsible for carrying out highly-sophisticated ATM malware attacks against bank ATMs, which were made to dispense all the money they contained (known as cash-out or jackpotting).  The modus operandi employed was highly sophisticated and involved:

  • spear-phishing emails with attachments containing malicious programmes,
  • penetration of the banks’ internal networks,
  • compromising and controlling the network of ATMs,
  • special computer programmes which deleted most of the traces of the criminal activity, etc.

Related losses suffered by the affected banks are estimated at around EUR 3 million. In some cases, after the cashing-out, the stolen money was partially recovered from the criminals.

EC3A key factor for the successful dismantling of this international cybercrime syndicate was close police cooperation on the global level and deep involvement of the Europol Liaison Office at the INTERPOL Global Complex for Innovation (IGCI).

Steven Wilson, Head of EC3, said: “The majority of cybercrimes have an international dimension, taking into account the origins of suspects and places where crimes are committed. Only through a coordinated approach at the global level between law enforcement agencies can we successfully track down the criminal networks behind such large-scale frauds and bring them to justice.”  Mr Wilson will give the keynote address at the EAST Financial Crime and Security Forum which will be held in The Hague on 8th/9th June 2017.

To further strengthen international police cooperation the Third Strategic Meeting on Payment Card Fraud (PCF) was held last month at the Electronic Transactions Development Agency (ETDA) in Bangkok, Thailand.

Europol, working with the EAST Expert Group on ATM Fraud (EGAF), has published guidelines to help industry and law enforcement counter the threat presented by ATM logical and malware attacks.

EAST gains representation from Indonesia

Fraud Banking Investigation Halo BCA, PT Bank Central Asia, Tbk. (BCA) has just joined EAST as the National Member for Indonesia.  While EAST is focused on the Single Euro Payments Area (SEPA), BCA will participate as a non-SEPA member.  BCA deploys over 17,000 ATMs.

Since it was established in 1957, BCA has continued to grow. This has been the result of the dedicated teamwork of every single employee and the unflagging support of customers. In line with the commitment to be “Always by Your Side”, BCA continues to strive to earn the trust, and live up to the expectations, of all the Bank’s customers and other stakeholders in its drive to continue to achieve ongoing growth.

EAST has national representation from the following 26 European countries:  Austria, Belgium, Bulgaria, Cyprus, Czech Republic, Denmark, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Liechtenstein, Luxembourg, Netherlands, Norway, Malta, Poland, Portugal, Romania, Slovakia, Spain, Sweden, Switzerland, United Kingdom.  EAST is still seeking national representative members from:  Estonia, Iceland, Latvia, Lithuania and Slovenia.

Brazil, Canada, Indonesia, Russia, Serbia, South Africa, Turkey, Ukraine and the United States are represented at EAST as non-SEPA members and EAST is seeking to establish links with parties in any country, able to share national incident and loss statistics for ATM related fraud and physical attacks.  Interested parties should contact us through this website.

EAST EGAF holds 12th Meeting

The EAST Expert Group on ATM FraudThe Twelfth Meeting of the EAST Expert Group on ATM Fraud (EAST EGAF) took place on Wednesday 18th January 2017 at ING Domestic Bank in Amsterdam.

EAST EGAF is a regional expert group that focuses on regional and global ATM crime and fraud related issues, threats and counter-measures.

The meeting was chaired by Mr Otto de Jong and was attended by key representatives from ATM Deployers, ATM Networks, ATM Vendors, Security Equipment and Software Vendors, Law Enforcement and Forensic Analysts.

The Group, which meets three times a year in advance of each of the meetings of EAST National Members, enables in-depth and technical discussion to take place on ATM Skimming, ATM Card Trapping, ATM Cash Trapping, ATM Reversal Fraud and ATM Logical Fraud.

The focus of the Group is on topics and issues raised by EAST National Members, which represent 34 countries with a total deployment of 1,332,228 ATMs. Outputs from the group are presented to all meetings of EAST National Members.

In addition EAST EGAF generates EAST ATM Fraud Alerts for all EAST Members (National and Associate). In total 127 EAST ATM Fraud Alerts have been issued, 3 to date in 2017.

Head of EC3 will give Keynote Address at EAST FCS 2017

Steven Wilson, Head of Europol’s European Cybercrime Centre (EC3) will give the keynote address at the EAST Financial Crime and Security Forum (EAST FCS 2017) which will be held in The Hague on 8th/9th June 2017.

Europol set up EC3 in 2013 to strengthen the law enforcement response to cybercrime in the EU and thus to help protect European citizens, businesses and governments from online crime.

Cybercrime is a wide and varied problem and the EC3 is a key part of Europol’s, and the EU’s, response.  EC3 takes a three-pronged approach to the fight against cybercrime: forensics, strategy and operations.

EC3 recognises the severity of the threat presented by ATM logical and malware attacks and has prepared security guidelines regarding this new cyber threat to ATMs.  The production of this document was coordinated by the EAST Expert Group on ATM Fraud (EGAF), and is the first of its kind.  Versions are now available in English, German, Italian and Spanish.

Europol is actively developing international cooperation on combating payment fraud, which is one of the EU priorities within the EU Policy Cycle 2014-2017 for organised crime and serious international crime as endorsed by the Council of the EU.  As part of this EC3 has consistently undertaken a proactive approach, assisting EU law enforcement authorities (LEAs) to combat payment card fraud.  On 13th / 14th December 2016, EC3, together with ASEANAPOL and INTERPOL, and with the support of the Romanian National Police and the Royal Thai Police, organised the Third Strategic Meeting on Payment Card Fraud (PCF) in Bangkok Thailand.

Speaker Spotlight

Steven Wilson - EAST FCS 2017

In January 2016 Steven Wilson became the Head of EC3.

Prior to that he served for 30 years with Police Scotland, which included roles with Strathclyde Police, Scottish Crime and Drug Enforcement Agency and Her Majesty’s Inspectorate of Constabulary.  He has worked in a wide range of Senior Detective roles including major investigations, counter terrorism, covert policing, management of sex offenders, fugitives and witness protection.  He had responsibility for all aspects of cyber and cyber enabled crime in Scotland and sat on government, industry and academic groups.  He also represented Scotland on UK national and European cyber groups.

Book soon to ensure you don’t miss your opportunity to attend the event. Places are limited and registration priority will be given to EAST Members, National and Associate.  The early-bird registration discount will expire on Monday 16th January 2017.

Don’t miss the early registration discount for EAST FCS 2017


Registration is underway for the EAST Financial Crime & Security 2017 conference (EAST FCS 2017) which takes place at the Grand Hotel Amrâth Kurhaus in Scheveningen, The Hague, Netherlands on 8th / 9th June 2017.

This year the aim is to increase the networking opportunities as well as to provide the most up to date information on ATM security threats, fraud trends, solutions, best practices and the benefits of collaboration with local law enforcement agencies. We will also run several workshops where you can brainstorm together with senior executives from across the globe.

EAST FCS 2015 DelegatesWe have gathered some of the best known and expert speakers from all over the world including from Interpol (Asia), ATEFI (La Asociación Latinoamericana de Operadores de Servicios de Transferencia Electrónica de Fondos e Información   / The Latin American Association of Operators of Electronic Funds Transfer and Information Services), Banorte, U.S. Secret Service, MMA Russia, Citbank plus our esteemed colleagues who chair the EAST Expert Groups on Physical Attacks and Fraud; and many more. A fantastic line-up with plenty of time between sessions to meet with industry peers to discuss shared interests.

Places are limited so be sure to get in before the early bird discount deadline ends on 16th January 2017. To avoid missing out on your place at this prestigious industry event find our registration page here.

If you plan to stay at the venue, be sure to book the hotel during your FCS registration. We have negotiated an excellent rate with the Kurhaus which can be obtained by using the code E16ATM10ST16 under the ‘Group Code’ option on the hotel’s booking page.

This year we have also introduced a networking gala dinner. For only €30 on top of your registration fee, this is a great opportunity to build your network and grow your collection of global contacts. It takes place after Day One, on the evening of 8th June. The hotel promises an excellent dining experience and possibly even a table or two outside, weather permitting!

For relevant solution providers we have a few remaining sponsorship opportunities available. See here for more details on the best ways to reach your target market at this event.

For more overall details on EAST FCS 2017, please see the event’s page on our website.

Third Strategic Meeting on Payment Card Fraud

3rd Strategic Meeting on Payment Card Fraud

EAST presented at the Third Strategic Meeting on Payment Card Fraud (PCF) at the Electronic Transactions Development Agency (ETDA) in Bangkok, Thailand.

This event, which was organised by Europol’s European Cybercrime Centre (EC3) on 13-14 December 2016, provided the law enforcement community with a comprehensive overview of payment card issues such as compromising payment card data, skimming, ATM cashing out, e-commerce and airline frauds. The event, which was co-organised with ASEANAPOL and INTERPOL with the support of the Romanian National Police and the Royal Thai Police, was hosted by the ETDA (public organisation), and the Ministry of Digital Economy and Society.

Thirty law enforcement officers from four EU Member States (Austria, France, Greece, and Romania) and their ASEAN counterparts (Brunei, Cambodia, Indonesia, Malaysia, Myanmar, Philippines, Singapore, and Thailand) participated in the two-day meeting. The private sector was represented by EAST, the Bank of Thailand, representatives from the Thai commercial banks and LiquidNexxus. The ThaiCERT – ETDA facilitated cooperation between the law enforcement community and the Computer Emergency Response Teams (CERTs).

EAST Executive Director Lachlan Gunn gave an overview of the European ATM Fraud situation and highlighted the issue of losses in the ASEAN region faced by European card issuers.

3rd Strategic PCF MeetingThe aim of the event was to discuss operational achievements in the area of combating cyber fraud and to agree on the steps to follow with regard to security of non-cash means of payment. It focused on the exchange of expertise in the area of prevention and combating ATM/POS fraud, data compromising, ATM malware, and eCommerce fraud. A specific action plan concerning further cross-regional cooperation between European and Asian law enforcement was devised, following recent successful operations between the two parties.

As a result of discussions at the event, and to strengthen inter-regional industry communication to combat terminal and payment security, EAST is in follow up communication with the banking sectors in Indonesia and Thailand.

In March 2016 EAST supported the Second Strategic Meeting on Payment Card Fraud which was held at the Royal Malaysian Police College in Kuala Lumpur, Malaysia.  The meeting was hosted by Europol, INTERPOL and ASEANOPOL with the financial support of the Romanian authorities.

In November 2015 EAST supported the First Strategic Meeting on Payment Card Fraud which was held in the INTERPOL Global Complex for Innovation (IGCI) and was co-hosted by Europol and INTERPOL with the financial support of the Romanian authorities.

In October 2015 EAST participated in a two-day meeting in Bogota (Colombia) to discuss payment card fraud overseas and money withdrawals in Latin America.

Registration for EAST FCS 2017 Now Open



Delegate registration for the EAST Financial Crime and Security (FCS) Forum 2017 has now opened! The conference, which will take place on 8th and 9th June 2017, will be held in the Netherlands at the Grand Hotel Amrâth Kurhaus (see below) in Scheveningen, the popular seaside resort which is located in The Hague. Rooms will be available at a special rate.

Book early to secure your place at EAST FCS 2017. Places are limited and registration priority will be given to EAST Members, National and Associate.

The Kurhaus Hotel  Hotel Amrath Kurhaus

EAST Publishes European Fraud Update 3-2016

east-european-fraud-update-3-2016EAST has just published its third European Fraud Update for 2016. This is based on country crime updates given by representatives of 18 countries in the Single Euro Payments Area (SEPA), and 6 non-SEPA countries, at the 40th EAST meeting held in Bucharest, Romania on 12th October 2016.

Card skimming at ATMs was reported by nineteen countries. The usage of M3 – Card Reader Internal Skimming devices continues. This type of device is placed at various locations inside the motorised card reader behind the shutter.  Seven countries reported such attacks.

International skimming related losses were reported in 57 countries and territories outside of the Single Euro Payments Area (SEPA) and in 10 within SEPA. The top three locations where such losses were reported are the USA, Indonesia and India.

Skimming attacks on other terminal types were reported by eight countries and six countries reported such attacks on unattended payment terminals (UPTs) at petrol stations.

ATM malware and logical security attacks were reported by eight countries all involving the usage (or attempted usage) of ‘black-box’ devices to allow the unauthorised dispensing of cash. To help counter such attacks the Europol document ‘Guidance and Recommendations regarding Logical attacks on ATMs’ is now available in four languages: English, German, Italian and Spanish.

Ram raids and ATM burglary were reported by nine countries and eleven countries reported explosive gas attacks, four of them seeing big increases in such attacks.  The use of solid explosives continues to spread and six countries reported such attacks.

Payment fraud issues were reported by eight countries. Two of them reported data breaches and one updated on contactless card fraud. One country reported fraud relating to a popular games console and another fraud related to advertising on social media.

The full Fraud Update is available to EAST Members (National and Associate).