{"id":41516,"date":"2021-06-28T15:53:56","date_gmt":"2021-06-28T15:53:56","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/32411\/NFC-Flaws-Allow-ATM-Hacking-With-A-Wave-Of-A-Phone.html"},"modified":"2021-06-28T15:53:56","modified_gmt":"2021-06-28T15:53:56","slug":"nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/","title":{"rendered":"NFC Flaws Allow ATM Hacking With A Wave Of A Phone"},"content":{"rendered":"<figure class=\"intro-image intro-left\"><img decoding=\"async\" src=\"https:\/\/cdn.arstechnica.net\/wp-content\/uploads\/2021\/06\/atm-nfc-800x533.jpg\" alt=\"NFC flaws let researchers hack an ATM by waving a phone\"><figcaption class=\"caption\">\n<div class=\"caption-credit\">Chalongrat Chuvaree | Getty Images<\/div>\n<\/figcaption><\/figure>\n<aside id=\"social-left\" class=\"social-left\" aria-label=\"Read the comments or share this article\"><a title=\"38 posters participating\" class=\"comment-count icon-comment-bubble-down\" href=\"https:\/\/arstechnica.com\/information-technology\/2021\/06\/nfc-flaws-let-researchers-hack-an-atm-by-waving-a-phone\/?comments=1\"> <\/p>\n<h4 class=\"comment-count-before\">reader comments<\/h4>\n<p> <span class=\"comment-count-number\">48<\/span> <span class=\"visually-hidden\"> with 38 posters participating<\/span> <\/a> <\/p>\n<div class=\"share-links\">\n<h4>Share this story<\/h4>\n<\/p><\/div>\n<\/aside>\n<p><!-- cache miss 328:single\/related:ef2d9fdabf598c6ee8f076b4ac88c2c4 --><!-- empty --><\/p>\n<p>For years, security researchers and cybercriminals have hacked ATMs by using all possible avenues to their innards, from <a href=\"https:\/\/www.wired.com\/2010\/07\/atms-jackpotted\/\">opening a front panel and sticking a thumb drive into a USB port<\/a> to <a href=\"https:\/\/www.wired.com\/2017\/04\/hackers-emptying-atms-drill-15-worth-gear\/\">drilling a hole that exposes internal wiring<\/a>. Now, one researcher has found a collection of bugs that allow him to hack ATMs\u2014along with a wide variety of point-of-sale terminals\u2014in a new way: with a wave of his phone over a contactless credit card reader.<\/p>\n<p>Josep Rodriguez, a researcher and consultant at security firm IOActive, has spent the last year digging up and reporting vulnerabilities in the so-called near-field communications reader chips used in millions of ATMs and point-of-sale systems worldwide. NFC systems are what let you wave a credit card over a reader\u2014rather than swipe or insert it\u2014to make a payment or extract money from a cash machine. You can find them on countless retail store and restaurant counters, vending machines, taxis, and parking meters around the globe.<\/p>\n<figure class=\"image shortcode-img right full\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/cdn.arstechnica.net\/wp-content\/uploads\/2019\/02\/wired-logo.png\" width=\"218\" height=\"58\"><\/figure>\n<p>Now Rodriguez has built an Android app that allows his smartphone to mimic those credit card radio communications and exploit flaws in the NFC systems&#8217; firmware. With a wave of his phone, he can exploit a variety of bugs to crash point-of-sale devices, hack them to collect and transmit credit card data, invisibly change the value of transactions, and even lock the devices while displaying a ransomware message. Rodriguez says he can even force at least one brand of ATMs to dispense cash\u2014though that <a href=\"https:\/\/www.wired.com\/story\/jackpotting-atm-hacks\/\">&#8220;jackpotting&#8221; hack<\/a> only works in combination with additional bugs he says he has found in the ATMs&#8217; software. He declined to specify or disclose those flaws publicly due to nondisclosure agreements with the ATM vendors.<\/p>\n<p>&#8220;You can modify the firmware and change the price to one dollar, for instance, even when the screen shows that you&#8217;re paying 50 dollars. You can make the device useless, or install a kind of ransomware. There are a lot of possibilities here,&#8221; says Rodriguez of the point-of-sale attacks he discovered. &#8220;If you chain the attack and also send a special payload to an ATM&#8217;s computer, you can jackpot the ATM\u2014like cash out, just by tapping your phone.&#8221;<\/p>\n<aside class=\"ad_wrapper\" aria-label=\"In Content advertisement\"> <span class=\"ad_notice\">Advertisement <\/span> <\/aside>\n<p>Rodriguez says he alerted the affected vendors\u2014which include ID Tech, Ingenico, Verifone, Crane Payment Innovations, BBPOS, Nexgo, and the unnamed ATM vendor\u2014to his findings between seven months and a year ago. Even so, he warns that the sheer number of affected systems and the fact that many point-of-sale terminals and ATMs don&#8217;t regularly receive software updates\u2014and in many cases require physical access to update\u2014mean that many of those devices likely remain vulnerable. &#8220;Patching so many hundreds of thousands of ATMs physically, it&#8217;s something that would require a lot of time,&#8221; Rodriguez says.<\/p>\n<p>As a demonstration of those lingering vulnerabilities, Rodriguez shared a video with WIRED in which he waves a smartphone over the NFC reader of an ATM on the street in Madrid, where he lives, and causes the machine to display an error message. The NFC reader appears to crash and no longer reads his credit card when he next touches it to the machine. (Rodriguez asked that WIRED not publish the video for fear of legal liability. He also didn&#8217;t provide a video demo of a jackpotting attack because, he says, he could only legally test it on machines obtained as part of IOActive&#8217;s security consulting to the affected ATM vendor, with whom IOActive has signed an NDA.)<\/p>\n<p>The findings are &#8220;excellent research into the vulnerability of software running on embedded devices,&#8221; says Karsten Nohl, the founder of security firm SRLabs and a well-known firmware hacker, who reviewed Rodriguez&#8217;s work. But Nohl points to a few drawbacks that reduce its practicality for real-world thieves. A hacked NFC reader would only be able to steal mag-stripe credit card data, not the victim&#8217;s <a href=\"https:\/\/www.wired.com\/2015\/04\/hacker-lexicon-chip-pin-cards\/\">PIN or the data from EMV chips<\/a>. And the fact that the ATM cashout trick would require an extra, distinct vulnerability in a target ATM&#8217;s code is no small caveat, Nohl says.<\/p>\n<p>But security researchers like the late IOActive hacker Barnaby Jack and the team at Red Balloon Security have been able to uncover those ATM vulnerabilities for years and have <a href=\"https:\/\/www.wired.com\/story\/atm-hackers-jackpotting-remote-malware\/\">even shown that hackers can trigger ATM jackpotting remotely<\/a>. Red Balloon CEO and chief scientist Ang Cui says that he&#8217;s impressed by Rodriguez&#8217;s findings and has little doubt that hacking the NFC reader could lead to dispensing cash in many modern ATMs, despite IOActive withholding some details of its attack. &#8220;I think it&#8217;s very plausible that once you have code execution on any of these devices, you should be able to get right to the main controller, because that thing is full of vulnerabilities that haven&#8217;t been fixed for over a decade,&#8221; Cui says. &#8220;From there,&#8221; he adds, &#8220;you can absolutely control the cassette dispenser&#8221; that holds and releases cash to users.<\/p>\n<aside class=\"ad_wrapper\" aria-label=\"In Content advertisement\"> <span class=\"ad_notice\">Advertisement <\/span> <\/aside>\n<p>Rodriguez, who has spent years testing the security of ATMs as a consultant, says he began exploring a year ago whether ATMs&#8217; contactless card readers\u2014most often sold by the payment technology firm ID Tech\u2014could serve as an in-road to hacking them. He began buying NFC readers and point-of-sale devices from eBay and soon discovered that many of them suffered from the same security flaw: they didn&#8217;t validate the size of the data packet sent via NFC from a credit card to the reader, known as an application protocol data unit or APDU.<\/p>\n<figure class=\"video ars-wp-video vertical\"> <\/figure>\n<p>By using a custom app to send a carefully crafted APDU from his NFC-enabled Android phone that&#8217;s hundreds of times larger than the reader expects, Rodriguez was able to trigger a &#8220;buffer overflow,&#8221; a decades-old type of software vulnerability that allows a hacker to corrupt a target device&#8217;s memory and run their own code.<\/p>\n<p>When WIRED reached out to the affected companies, ID Tech, BBPOS, and Nexgo didn&#8217;t respond to requests for comment, and the ATM Industry Association declined to comment. Ingenico responded in a statement that, due to its security mitigations, Rodriguez&#8217;s buffer overflow technique could only crash its devices, not gain code execution on them, but that, &#8220;considering the inconvenience and the impact for our customers,&#8221; it issued a fix anyway. (Rodriguez counters that he&#8217;s doubtful that Ingenico&#8217;s mitigations would actually prevent code execution, but he hasn&#8217;t actually created a proof of concept to demonstrate this.)<\/p>\n<p>Verifone, for its part, said that it had found and fixed the point-of-sale vulnerabilities Rodriguez highlighted in 2018 long before he had reported them. But Rodriguez argues that this only demonstrates the lack of consistent patching in the company&#8217;s devices; he says he tested his NFC techniques on a Verifone device in a restaurant last year and found that it remained vulnerable.<\/p>\n<p>After keeping many of his findings under wraps for a full year, Rodriguez plans to share the technical details of the vulnerabilities in a webinar in the coming weeks, in part to push customers of the affected vendors to implement the patches that the companies have made available. But he also wants to call attention to the abysmal state of embedded device security more broadly. He was shocked to find that vulnerabilities as simple as buffer overflows have lingered in so many commonly used devices\u2014ones that handle cash and sensitive financial information, no less.<\/p>\n<p>&#8220;These vulnerabilities have been present in firmware for years, and we\u2019re using these devices daily to handle our credit cards, our money,&#8221; he says. &#8220;They need to be secured.&#8221;<\/p>\n<p><em>This story originally appeared on <a href=\"https:\/\/www.wired.com\/story\/atm-hack-nfc-bugs-point-of-sale\/\">wired.com<\/a>.<\/em><\/p>\n<p> READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/32411\/NFC-Flaws-Allow-ATM-Hacking-With-A-Wave-Of-A-Phone.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":41517,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[277],"tags":[9423],"class_list":["post-41516","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity-blogs","tag-headlinehackerbankphonewirelessflaw"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>NFC Flaws Allow ATM Hacking With A Wave Of A Phone 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"NFC Flaws Allow ATM Hacking With A Wave Of A Phone 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2021-06-28T15:53:56+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/06\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"533\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"NFC Flaws Allow ATM Hacking With A Wave Of A Phone\",\"datePublished\":\"2021-06-28T15:53:56+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/\"},\"wordCount\":1297,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/06\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone.jpg\",\"keywords\":[\"headline,hacker,bank,phone,wireless,flaw\"],\"articleSection\":[\"CyberSecurity Blogs\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/\",\"name\":\"NFC Flaws Allow ATM Hacking With A Wave Of A Phone 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/06\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone.jpg\",\"datePublished\":\"2021-06-28T15:53:56+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/06\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/06\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone.jpg\",\"width\":800,\"height\":533},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,hacker,bank,phone,wireless,flaw\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlinehackerbankphonewirelessflaw\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"NFC Flaws Allow ATM Hacking With A Wave Of A Phone\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"NFC Flaws Allow ATM Hacking With A Wave Of A Phone 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/","og_locale":"en_US","og_type":"article","og_title":"NFC Flaws Allow ATM Hacking With A Wave Of A Phone 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2021-06-28T15:53:56+00:00","og_image":[{"width":800,"height":533,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/06\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"NFC Flaws Allow ATM Hacking With A Wave Of A Phone","datePublished":"2021-06-28T15:53:56+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/"},"wordCount":1297,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/06\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone.jpg","keywords":["headline,hacker,bank,phone,wireless,flaw"],"articleSection":["CyberSecurity Blogs"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/","url":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/","name":"NFC Flaws Allow ATM Hacking With A Wave Of A Phone 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/06\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone.jpg","datePublished":"2021-06-28T15:53:56+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/06\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/06\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone.jpg","width":800,"height":533},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/nfc-flaws-allow-atm-hacking-with-a-wave-of-a-phone\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,hacker,bank,phone,wireless,flaw","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinehackerbankphonewirelessflaw\/"},{"@type":"ListItem","position":3,"name":"NFC Flaws Allow ATM Hacking With A Wave Of A Phone"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/41516","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=41516"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/41516\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/41517"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=41516"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=41516"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=41516"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}