'Like a Movie' - 10 Steps Hackers Are Using to Drain Cash from U.S. ATMs

Pulling off a series of sophisticated heists takes time, planning, and practice.

And when we read how thieves have drained more than a million dollars from U.S. ATMs in just the last few weeks, it hit us: this thing plays out like a scene from Ocean's Eleven.

Plans are tested, malware is activated, fake ATM technicians are ready. Some hackers are physically onsite to prep the ATM, others suddenly appear to catch 40 bills coming out of the ATM every 23 seconds. Then they walk away, with a huge haul of cash.

How the ATM hacks work, in a crime called "jackpotting"

A new alert from the U.S. Secret Service warns of an increasing wave of these attacks. Another from the Department of Homeland Security, reviewed by SecureWorld, paints a crazy picture of how this crime goes down.

Read how the ATM hacks work and you may not believe how much thought went into this.

10 steps hackers are using now

1. Hackers dressed as ATM technicians arrive at a front loading Diebold ATM, most commonly found in stores or drive throughs
2. They prefer if it is running on Windows XP 
3. Hackers open the top cover of the ATM using a generic Diebold key (available online)
4. They unplug the ATM from the web (its Ethernet cable) so the ATM cannot notify anyone of possible trouble
5. Hackers then switch the ATM CPU cable and plug it into their laptop, which contains Malware to gain control of the ATM
6. Next, they unplug the video cable from the ATM & plug it into their laptop. The hacker now uses the ATM screen right from his laptop
7. Other devices— including a phone, bluetooth keyboard, and bluetooth mouse—are attached to the ATM
8. Next, "they run diagnostics to set Dispenser Communications," but it requires them to press two physical buttons to prove they have accessed the ATM's safe
9. Hackers then use an endoscope camera to go through a tiny opening to see and push the required buttons
10. "The dispenser encryption is now synchronized to the ATM software that is running in the laptop" Hackers have control.

How ATM hackers get the cash out

With the ATM screen now reading "Out of Order," the setup crew leaves. They are in control. A short time later, different criminals known as the "cash out crew" arrive, also dressed as technicians.

The Department of Homeland Security say this is how it goes down: "Cash out crews communicate with co-conspirators remotely controlling the ATMs to intiate the ATM cash withdrawals." Up to 40 bills every 23 seconds.

According to a DHS advisory: "After the cash is taken from the ATM and the money mule leaves, the (fake) setup technicians return to the site and remove their equipment. The last thing fraudsters do before leaving the site is to plug the Ethernet cable back in."

Just like that, the ATM is back online like nothing happened. Except, the cash is completely drained from the machine.

Who is behind all this? A CBS News report indicates officials are closing in on a group of thieves, but we're not sure what that means.

Regardless, can't you picture George Clooney and Matt Damon working with Brad Pitt on how to pull this off over and over again?

Somewhere, right now, the real hackers and their team may be doing exactly that.