Sign up to get updates directly in your inbox
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
In light of recent security threats impacting the ATM industry, we extend our concern to those affected and reaffirm our dedication to safeguarding our clients and partners. We want to clearly emphasize that CSG's network has experienced absolutely no security incidents and remains fully secure. While we acknowledge that another U.S. based ATM provider has faced challenges, and we stand in solidarity with the industry as we all work to maintain the highest security standards, CSG strives to continually assess and strengthen our security measures to counter potential risks.
The U.S. Secret Service has reported a significant increase in ATM jackpotting attacks over the past six months, with incidents occurring across multiple states and involving various ATM brands. These sophisticated attacks involve methods such as malware injection, black box devices, RMS (Remote Management Software), and man-in-the-middle techniques to exploit ATM vulnerabilities.
As part of our strategic security plan, we follow the best practices:
1. Patching – We provide regular updates and patches to keep all software up-to-date, secure, and fully functional. This proactive maintenance helps address vulnerabilities, optimize system performance, and adapt to evolving security needs, minimizing the risk of downtime.
2. Multi-Factor Authentication (MFA) – We enforce MFA across our systems to add an extra layer of security. This ensures that only authorized personnel can access sensitive information, significantly reducing the risk of unauthorized access.
3. Security Information and Event Management (SIEM) – Our SIEM system centralizes incident reporting, tracking, and resolution. This allows us to improve accountability, enhance response times, and leverage actionable insights to strengthen security and operational efficiency.
4. Antivirus (AV) – We use AI-driven antivirus technology to proactively detect and prevent malware, ransomware, and other cyber threats in real time, ensuring robust protection for critical business operations.
5. Hard Drive Encryption - We utilize BitLocker to encrypt data on all Supported storage devices, ensuring that sensitive information remains protected from unauthorized access, even in the event the hardware is stolen.
6. TLS 1.2 Encryption – We enforce TLS 1.2 encryption for secure communication across our network, ensuring that data transmission is protected against interception, man in the middle attacks, and unauthorized access.
7. Suspicious Activity Notification - Fraud Detection Engine (SAN-FDE) – This advanced real-time fraud detection system helps identify and prevent cash harvesting at ATMs and ITMs. It monitors transaction patterns for signs of fraud, such as rapid maximum withdrawals and balance inquiries followed by withdrawals.
To further enhance our security posture, we are in the process of implementing Hard Disk Drive (HDD) Encryption across all systems that support this feature. This measure ensures that data stored on our devices is protected against unauthorized access, even in the event of physical theft or tampering.
By integrating these longstanding security measures and continuously enhancing our defenses, we ensure that our network and our customers’ networks remain protected against a wide range of threats. Our commitment to regular maintenance, advanced security technologies, and proactive incident management enables us to maintain a secure and reliable environment for all stakeholders.
We remain committed to transparency and proactive security. If you have any questions or concerns, please do not hesitate to reach out to your account manager.