A look at the 2020â2022 ATM/PoS malware landscape>
Secure List – Kaspersky
We observed the threat landscape of ATM/PoS malware attacks and how it changed in 2020-2022. Specifically, we looked at the number of affected ATMs and PoS terminals, geography of attacks and threat families used by cybercriminals to target victims. For these purposes, we analyzed threat statistics from Kaspersky Security Network (KSN), a system for processing anonymized cyberthreat-related data shared voluntarily by Kaspersky users, for the period between January 2020 and August 2022.

Key findings In the first eight months of 2022, the number of unique devices affected by ATM/PoS malware grew by 19% as compared to the same period in 2020, and by nearly 4% compared to 2021. Recovering from the 2020 slump, the number of attacks continued to grow steadily, and we expect cybercrime activity to increase further. HydraPOS and AbaddonPOS proved to be the most active families. The TOP-5 also included Ploutus, RawPOS, and Prilex.
Link: https://securelist.com/atm-pos-malware-landscape-2020-2022/107656/