News

FBI Alert: Global “Unlimited” ATM Cash-Out Scheme Exposed

FBI Alert Image

According to a confidential alert obtained by security researcher Brian Krebs, “The Federal Bureau of Investigation is warning banks that cybercriminals are preparing to carry out a highly choreographed, global fraud scheme known as an “ATM cash-out,” in which crooks hack a bank or payment card processor and use cloned cards at cash machines around the world to fraudulently withdraw millions of dollars in just a few hours.”

As reported in his August 18 blog the alert states “The FBI has obtained unspecified reporting indicating cyber criminals are planning to conduct a global Automated Teller Machine (ATM) cash-out scheme in the coming days, likely associated with an unknown card issuer breach and commonly referred to as an ‘unlimited operation’,” The FBI stated that unlimited operations compromise a financial institution or payment card processor with malware to access bank customer card information and exploit network access, enabling large scale theft of funds from ATMs.

According to a Finextra announcement of August 19th the alert also warns that “Historic compromises have included small-to-medium size financial institutions, likely due to less robust implementation of cyber security controls, budgets, or third-party vendor vulnerabilities” stating that it “expects the ubiquity of this activity to continue or possibly increase in the near future” and offers a host of tips to combat the crooks.

Last month, KrebsOnSecurity broke a story about an apparent unlimited operation used to extract a total of $2.4 million from accounts at the National Bank of Blacksburg in two separate ATM cash-outs between May 2016 and January 2017. Hackers used phishing emails to break into the Virginia bank in two separate cyber intrusions over an eight-month period, making off with more than $2.4 million total. Now the financial institution is suing its insurance provider for refusing to fully cover the losses.

Learn more about protecting your institution from “Cash-out” catastrophe.

Click “Breaking the Bank” and Contact CSFi to learn more about, FraudBlock™, FraudBlock™ Standalone (SA), Foreign Card Limits, and other solutions limiting or restricting cardholder cash withdrawal transactions at your bank’s ATMs.

By : Sales and Marketing /August 22, 2018 /Featured News, FraudBlock, News /0 Comment Read More

CSFi Partners with MEA Solutions to Participate in National Show

CSFi recently participated as a partner vendor in the 6th annual national MEA User Conference located in New Orleans, Louisiana. Our attendance gave new opportunity for regional and core-platform-specific financial institutions to learn more about our ATM driving and debit processing solutions. This event also represented the culmination of several months of discussion between CSFi and MEA Financial Solutions to solidify the partnership of our two systems and provide customers with one combined offering.

The annual conference, held in June, showcased MEA’s latest product offerings and development, along with a unique opportunity to provide feedback on future development to their upcoming solutions. The event hosted a variety of vendor organizations, including CSFi, to display the strategic offerings from valued partners. In attendance were nearly three dozen banks and financial institutions that showed interest in a combined CSFi/MEA solution.

Primarily focused on financial institutions using Jack Henry core banking systems, the MEALink solution offers online and real-time debit interfacing for cores such as SilverLake and CIF 20/20. An alternative to jXchange, the direct interface installs on the same AS/400 server as the core system. This option provides a more streamlined approach, achieving the highest throughput and performance possible for memo posting a debit transaction to the Jack Henry core.

MEA Solutions is a national leader in the provision of innovative software solutions to the financial services marketplace around the nation. As specialists in both innovative technology and the financial industry, MEA’s highly experienced and versatile team creates and supports flexible solutions that meet the demanding requirements in an adaptable industry.

CSFi is a global provider of electronic payment software that includes in-house ATM driving and management, on-line routing of debit card transactions for authorization to a core system and direct interfacing to most all domestic EFT networks. CSFi’s solutions provide real-time fraud detection and prevention, EMV debit card issuance and management, graphical ATM monitoring with real-time alert notifications, and countless other features for the ATM/debit delivery channel.

Bejan Nouri and Tony Cappadora, CSFi Sales and Marketing

 

 

 

By : Sales and Marketing /August 16, 2018 /Events, News /0 Comment Read More

Border State Bank Upgrading to EZswitch G4 with RTCM

Border State Bank LogoGreenbush, MN: Dedicated to employing the most advanced technology available to provide the best customer experience possible, Border State Bank is upgrading from EZswitch® 2012 to EZswitch® G4 with Real-Time Card Maintenance (RTCM). The new online interface connecting the bank’s Fiserv Precision core banking system to the First Data (Star) EFT network will enable the implementation of a host of new EZswitch features proven to lower costs, boost revenues, and improve operational efficiency.

Established in 1935, the bank has remained dedicated to meeting the evolving banking needs of Minnesota residents and businesses for nearly 83 years. With total assets now exceeding $500 million, the bank continues a long tradition of exceeding customer expectations.

In keeping with that tradition, the upgrade to EZswitch G4 will enable the bank to enhance both operational efficiency and cardholder experience by taking advantage of the latest features and enhancements to EZswitch software. The EZswitch G4 platform provides a highly customizable solution for financial institutions aiming to minimize costs, expand revenue sources, and maximize data and transactional security. The systems features and options for reducing fraud losses and streamlining management of debit card operations include:

  • FraudBlock integrated, rules-based, real-time fraud detection and prevention system
  • Sentinel Alert Notification System providing unattended monitoring of ATM’s, core system interface, EFT network connection(s) through email and SMS-text notification
  • G4 Web-based Apps real-time transaction and cardholder research and reporting, full system monitoring and automated job/task schedule managing
  • Support for Cardholder Alerts via email and SMS-text
  • On-demand ATM/EFT Network Denial Rules for immediate protection against a wide range of fraud sources
  • Stand-in authorization using a positive balance file (PBF) and/or card limits (the system will authorize using a PBF or card limits when the host authorizing system is unavailable)
  • Secure, single point of card maintenance entry
  • Advanced “drill down” capability for transaction and cardholder research and reporting
  • Reconciliation subsystem
  • System health check monitoring including all connections and database status
  • Automated job/task schedule management
  • Audits and logs of all user activity and much more…

Additionally, the VMware installation will include integrated support for full EMV functionality and utilize CSFi’s First Data Star Real-Time Card Maintenance (RTCM) interface. In the past, the bank has relied upon sending batch files at the end of the day to update the card record kept on the EFT network. Now, implementing the CSFi RTCM module, any changes to a card record performed from the bank’s core system will instantly flow to CSFi’s EZswitch software and on to the First Data Star EFT network.

RTCM enables instant access to debit card information and activity and the leveraging of trends in card usage essential to maintaining peak operational efficiency of debit card programs including:

  • Current account activity and balances
  • Account transfers
  • Debit card activations
  • Changes in personal cardholder preferences
  • Interchange fee generation
  • Suspicious or fraudulent activity

The new G4 front end, providing an at-a-glance view of the switch network and intuitive navigation and research tools, will allow authorized users easy access to the powerful system’s full capabilities including:

  • Real-time transaction and cardholder research and reporting with “drill down” capability
  • Real-time full system monitoring of all connections and database status
  • Simplified automation of routine job/task scheduling and management
  • Secure, single point of sign-on for multiple users with customizable roles and permissions and more

In addition to driving increased card based revenues, the upgrade will enhance the cardholder experience with real-time balance updates, speedy resolution of transactional disputes, stand-in processing, and support for many additional options and features including CSFi’s FraudBlock™ real-time, rules based fraud detection and prevention solution.

To learn more, Register now at CSFi.com and enable full access to our web resources. Once registered, users have full access to brochures, videos and additional information fully describing the features and benefits of EZswitch®, G4, Sentinel™, FraudBlock™, EMV support, and our entire suite of products, services and solutions.

 

By : Sales and Marketing /August 03, 2018 /Announcements, EZswitch, News /0 Comment Read More

ADIB is Live with Iraqi National Switch

ADIB logoAbu Dhabi, UAE: Abu Dhabi Islamic Bank (ADIB) is live with a new SWITCHWARE® interface required by the Central Bank of Iraq (CBI) to support ADIB’s Iraq branch delivery of ATM acquirer transactions and receiving POS issuer transactions.

Utilizing a single instance of SWITCHWARE located in Abu Dhabi, the system now supports the Iraqi National Switch and enables Iraqi ATMs to accept foreign cardholder transactions and authorize ADIB Iraqi cardholder transactions at foreign ATMs and POS devices. The new system supports multiple currencies and languages and is able to process both magnetic stripe and chip card transactions.

Since 1989, ADIB has relied upon cost effective and scalable CSFi products and services on its mission to provide Islamic banking solutions to the global community. A dynamic bank with a culture of innovation, the bank has pursued an ambitious growth strategy designed to meet and exceed both customer and shareholder expectations. With branches in Egypt, Saudi Arabia, the United Kingdom, Qatar and Iraq, ADIB is one of the largest banks in the UAE with more than 80 retail branches and 720 ATMs.

As the first UAE based financial institution to get approval from the CBI to operate in Iraq, its presence constitutes a key component of their international growth strategy.

For nearly 40 years, CSFi has helped customers around the world meet competitive challenges, achieve operational excellence, and enhance their bottom line.

The ability to accommodate the latest innovations in profit maximizing technology is more important than ever. The flexibility and scalability of SWITCHWARE® G4 is unsurpassed. Learn more about incorporating the transaction processing power, and functionalities of SWITCHWARE® with G4 Web-based Apps in your unique ATM operating environment. Contact Sales to arrange for a personal appointment.

Register now at CSFi.com and enable full access to our web resources. Once registered, users have full access to brochures, videos and additional information describing the features and benefits of our entire suite of products, services and solutions.

By : Sales and Marketing /July 17, 2018 /Announcements, News /0 Comment Read More

First American Bank is Live with EZswitch G4

First American Bank and Trust Vacherie, LA: Addressing the need for real-time management capability for their debit card programs, First American Bank & Trust is now live with CSFi’s EZswitch® G4 as the new online interface to their Fiserv Precision core banking system and First Data Star EFT network. The deployment of the new system in a virtualized VMware ESXi environment ensures that both the bank and its cardholders are relying upon the most advanced, secure and feature rich debit card management technology available.

The EZswitch G4 platform provides a highly customizable solution for financial institutions aiming to minimize costs, expand revenue sources, and maximize data and transactional security. The systems features and options for reducing fraud losses and streamlining management of debit card operations include:

  • FraudBlock integrated, rules-based, real-time fraud detection and prevention system
  • Sentinel Alert Notification System providing unattended monitoring of ATM’s, core system interface, EFT network connection(s) through email and SMS-text notification
  • G4 Web-based Apps real-time transaction and cardholder research and reporting, full system monitoring and automated job/task schedule managing
  • Support for Cardholder Alerts via email and SMS-text
  • On-demand ATM/EFT Network Denial Rules
  • Stand-in authorization using a positive balance file (PBF) and/or card limits (the system will authorize using a PBF or card limits when the host authorizing system is unavailable)
  • Secure, single point of card maintenance entry
  • Advanced “drill down” capability for transaction and cardholder research and reporting
  • Reconciliation subsystem
  • System health check monitoring including all connections and database status
  • Automated job/task schedule management
  • Audits and logs of all user activity and much more…

Real-time Card Management (RTCM)

Phase two of the installation will include implementation of the system’s integrated support for the First Data Star RTCM interface. CSFi’s proprietary RTCM solution ensures that any changes to a card record performed from the bank’s core system will instantly flow to EZswitch G4 and on to the First Data Star EFT network.

EZswitch G4 support for First Data Star RTCM will enable the instant identification and leveraging of current trends in card usage and system status important to realizing the full revenue potential of their debit card programs including real-time access and reporting on all critical debit card activity:

  • Current activity and balances
  • Account transfers
  • Interchange fee generation
  • Debit card activations
  • Effectiveness of rewards and loyalty programs
  • Changes in personal cardholder preferences
  • Faster resolution of transactional disputes
  • Suspicious or fraudulent activity and more

To learn more, Register now at CSFi.com and enable full access to our web resources. Once registered, users have access to brochures, videos and additional information fully describing the features and benefits of EZswitch®, G4, EMV support, virtualization and our entire suite of products, services and solutions.

By : Sales and Marketing /June 06, 2018 /Announcements, EZswitch, News /0 Comment Read More

Universal Savings Bank is Live with SWITCHWARE G4

usbbankUniversal Savings Bank is live with an upgrade from SWITCHWARE 3.11 to SWITCHWARE® G4.

Configured as an ATM controller and transaction acquirer system, the bank now relies upon SWITCHWARE G4 for the routing of all acquired transactions, ATM monitoring, and maximum system availability.

Streamlining operations and minimizing costs while translating native ATM messages into the bank’s specified format for authorization, CSFi and SWITCHWARE G4 have once again demonstrated their ability to deliver cost effective solutions to unique operating environments.

SWITCHWARE G4 provides support for multi-vendor ATM fleets around the world. Current SWITCHWARE implementations drive thousands of ATMs, in over 20 countries.

SWITCHWARE® G4 EMV

SWITCHWARE EMV support functions provides an “end-to-end” EMV solution for both ATM acquiring and smart card issuance, enabling conformance to current and future EMV standards for payment processing of smart card transactions and include:

  • Offline PIN verification
  • Application cryptograms (ARQC/ARPC validation)
  • Card risk management (offline risk parameters and authorization controls)
  • Card security code (CSC, CVV, CVV2), Chip card security Code (iCVV or Chip CVC)
  • Card verification results (CVR) support
  • Cardholder Verification Methods (offline, fallback, online, signature, no CVM)
  • All chip cards (ICC, contact or contactless, dual interface)
  • Combined DDA & Application (CDA) cryptogram support
  • Issuer Scripting & Issuer Action Codes (IACs)
  • Message Authentication Code (MAC) support

The ability to accommodate the latest innovations in profit maximizing technology is more important than ever. The flexibility and scalability of SWITCHWARE® G4 is unsurpassed. Learn more about incorporating the transaction processing power, scalability and functionalities of SWITCHWARE® with G4 Web-based Apps in your unique ATM operating environment. Contact Sales to arrange for a personal appointment.

Register now at CSFi.com and enable full access to our web resources. Once registered, users have full access to brochures, videos and additional information describing the features and benefits of our entire suite of products, services and solutions.

By : Sales and Marketing /May 15, 2018 /Announcements, News, SWITCHWARE /0 Comment Read More

ATM Inactivity Alerts

ATM Inactivity IconThe value of real-time monitoring and receiving ATM inactivity alerts cannot be overestimated. Often an indication that something is wrong, ATM inactivity may be the result of issues not ordinarily detected by traditional ATM diagnostic tools. This may include chewing gum lodged in the card reader or any other external issue that renders the ATM unusable but does not trigger an error condition to the backend ATM/switch system. ATMs that are unavailable and idle for any length of time is bad for your bottom line and bad for the cardholder’s experience.

Providing for the efficient monitoring and management of the entire ATM/EFT network, including real-time details of critical ATM/EFT network statuses, the hover-over and drill down facilities of the SWITCHWARE® G4 interface make it easy for authorized users to access and utilize the solution’s full capabilities. Vibrant, icon-based displays and color-coded alerts allow for immediate determination of the status of the entire ATM network, critical EFT switch network and core system connections, plus single click access to the system’s powerful card management, transaction research, system maintenance and reporting tools.

CSFi’s ATM Inactivity alerts work in conjunction with Sentinel and can be configured to react by:

  • Recognizing an ATM hardware fault has already been identified explaining the inactivity, and ignoring the alert
  • Dispatching/notifying a designated agent to check the ATM
  • Recording inactivity history essential to determining and setting individual ATM alert thresholds
  • And much more…

Visit CSFi.com or Contact CSFi to learn more about how SWITCHWARE® G4 can reduce ATM downtime, increase revenues, and enhance the customer experience.

By : Sales and Marketing /April 26, 2018 /Featured News, News, SWITCHWARE /0 Comment Read More

ATM Journal Data Viewable Using G4 Web

The SWITCHWARE® G4 Web Application includes a new Electronic Journal viewing solution which simplifies an ATM network manager’s ability to easily access ATM journal data, improving the overall monitoring, management and optimization of the self-service delivery channel.

ATM electronic journals provide a detailed record of all ATM activity including significant hardware and software events. The ability to easily access and analyze this data is a necessary component of any successful ATM network management strategy and critical to the rapid resolution of hardware, software, security, or transaction issues threatening financial loss, device availability or customer relationships.

Integrated Remote Management

Designed to streamline the monitoring of ATM Electronic Journals in a multi-vendor environment, the SWITCHWARE G4 Electronic Journal solution provides a single browser based view of the entire ATM Electronic Journal estate including NCR, Diebold and Triton ATMs.

Whether downloading searchable historical data or streaming terminal specific real-time ATM activity, the scalable and secure G4 Electronic Journal module enables authorized users to efficiently monitor and manage electronic journal functionality for nearly any multi-vendor ATM portfolio.

Contact a CSFi sales agent or visit our website to find out more about the benefits of incorporating the processing power, scalability, and functionalities of SWITCHWARE® G4 and Electronic Journal into your operating environment.

By : Sales & Marketing /April 26, 2018 /News /0 Comment Read More

JHA Banking Interface Options

JHA Core Banking Interface Support using MEALink

 

Solution Summary

SWITCHWARE® – a globally recognized electronic payment system designed to manage, process and route ATM, ITM and POS debit transactions, as well interface to a core banking system, an EFT network and manage a bank’s EMV-enabled debit cards. The system’s latest G4 version allows for a web-based front end module used for ATM monitoring to deliver a graphically-intuitive display with a command-level view of the entire ATM network. Real-time icon statuses show the activity of each ATM as it is happening. It includes a robust card-issuing module with open account relationships that can link one or more accounts with one or more card records. Multiple BINs and institutions may be arranged for logical groupings that correlate to the FI’s requirements for issuance. A comprehensive card limits and authorization rules module provides control over withdrawals and authorizations. Additionally, cardholder transaction research, settlement, and dispute resolution are all achievable from a single system.

Interface Options for SilverLake™ and CIF 20/20®

Traditional core system interfaces have relied on a standard ISO 8583 interface or some type of XML-based host interface. With Jack Henry banking systems there are two options to interface with both the Silverlake and CIF 20/20 platforms:

jXchange Middleware – The Jack Henry third-party gateway which utilizes a Windows-based .NET web SOAP interface to access all Jack Henry systems. It was originally designed for interfacing with third party systems, such as check imaging, internet banking, loan systems, etc., and each SOAP session requires user authentication with special SOAP handling logic. jXchange also requires the customer to have a separate server and individual interfaces for each connection to the core. Lastly, this approach is not recommended for high-volume or high-performance customers who need to process several transactions a second.

MEALink – Offered by MEA Financial, the AS/400 middleware solution provides a direct interface to the iSeries JHA core system (both Silverlake and CIF 20/20). This option is a more streamlined approach, achieving the highest throughput and performance possible for memo posting a debit transaction to the Jack Henry core.

MEALink Middleware Advantages

The use of a standard financial interface – No longer using an HTTP SOAP interface designed for third-party processing (internet-banking, check-imaging, etc.). Jack Henry controls the way in which third-parties access their solution using SOAP. SOAP has a considerable amount of bloatware (code that has lots of unnecessary rules and controls that inhibit performance).

Streamlined support – The number of organizations and groups involved to implement new changes or troubleshoot issues is greatly reduced. The “time to resolution” for support tickets and issues is shortened considerably using this method.

Direct access to JHA core systems – Not having to rely on multiple layers of solutions (points of failure) to get access to the Silverlake or CIF 20/20 core system.

Higher performance and throughput – Using MEA middleware will allow CSFi solutions to pump financial transactions to the core at an exponentially higher rate than could ever be possible with jXchange. Virtually no limitation to any amount of transaction volume.

MEA installs directly on AS/400 – No need to purchase other server equipment, and no other system or server has to sit between SWITCHWARE and the JHA core system.

Better integration for desired enhancements – Setting up future solutions, like card maintenance, or PIN Change at the ITM/ATM can be handled in a more expeditious manner, and would require very little (if no) involvement from Jack Henry.

Tight integration with MEA and CSFi ancillary solutions – Using the variety of MEA Financial and CSFi products, the suite of solutions are coupled to offer features such as allowing the cardholder to temporarily disable the debit-card from a mobile system, or allow cardholders to increase their card limits from the internet banking or mobile system, where those changes can flow to SWITCHWARE in real-time.

Supported Transactions

CSFi’s software provides a comprehensive list of financial transactions that can be supported via the interface to Jack Henry core systems:

  • ATM Cash Withdrawal
  • Fast Cash
  • Balance Inquiry
  • Transfers
  • Deposits
  • No-Envelope Cash and Check Deposits
  • Payment form Envelope
  • Mini-statements
  • Purchase Stamps
  • Reversals
  • PIN Change
  • P2P Cardless WDL
  • Pre-Authorization (POS)
  • Purchase Completion (POS)
  • Purchase Withdrawal (POS)
  • Cash Withdrawal (POS)
  • Refund (POS)
  • Reversal (POS)

How Are Cards Managed?

The card records and account mapping is handled in CSFi’s software. Using the software components, users can issue and manage the card records independent of the core banking platform. CSFi software provides several card management features including:

  • EMV chip card issuance
  • A positive or negative card file
  • Multiple card issues (ATM, debit card, etc.)
  • Transaction processing limits
  • Detailed transaction history and search features
  • Multiple cards tied to the same account
  • Card maintenance batch file extract for networks and other system consumers
  • Card production client to provide separate file for embossing
  • Support for instant card issuance
  • And much more…
By : Sales & Marketing /March 20, 2018 /News /0 Comment Read More