Cybercrime Group
Carbanak
Russia/Ukraine • Active since 2013
Carbanak figured out how to rob banks without guns. They hacked into banks' computers, learned how everything worked, then made ATMs spit out cash and transferred money to their accounts. They stole over a billion dollars.
Overview
Carbanak is a cybercriminal group that pioneered sophisticated attacks against financial institutions. They stole over $1 billion by manipulating banking systems, ATMs, and payment systems.
Also Known As
FIN7, Anunak, Carbon Spider
Target Industries
Banking, Financial Services, Point of Sale, Hospitality, Retail
Target Regions
Global, Europe, United States, Asia
Is your business exposed?
Tactics, Techniques & Procedures
- • Spear-phishing with malicious documents
- • ATM jackpotting
- • SWIFT system manipulation
- • Video surveillance of bank operations
- • Long-term network persistence
Known Tools & Malware
Carbanak, Cobalt Strike, GRIFFON, HALFBAKED, custom ATM malware
Notable Campaigns
Global Bank Heist (2013-2015)
Stole approximately $1 billion from banks across 30 countries.
ATM Cash-Out Operations (2016)
Coordinated ATM cash-outs across multiple countries simultaneously.
MITRE ATT&CK Techniques
T1566.001, T1059, T1219, T1071, T1021
Defense Recommendations
- 1.
Implement ATM security controls
- 2.
Deploy SWIFT security controls
- 3.
Monitor video surveillance access
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required