General Bytes Bitcoin ATMs hacked for $1.5 M

[Rikafip]

As the title says General Bytes (largest BATM manufacturer in the world with more than 9k machines) BATMs were hacked, and unkown attacker stole 56.28 BTC worth ~$1.5 million.

General Bytes’ security bulletin said the attacker was able to remotely upload their own Java application using the master service interface, which is typically used by terminals to upload videos. The attacker had access to BATM user privileges and was also able to access the database, read and decrypt API keys used to access funds in hot wallets and exchanges. In addition, the hacker could download usernames, access their password hashes, turn off 2FA, and send funds from hot wallets.

Bitcoin.com News spoke with a U.S.-based cryptocurrency automated teller machine (ATM) operator who confirmed that all U.S. operators using General Bytes machines were shut down nationwide for the evening. The operator also mentioned that servers would have to be rebuilt from the ground up, which can be a lengthy process

[Husires]

Is this how bad their systems are? This attack hit almost everything possible, databases, usernames and access to password hashes either the attacker was too sophisticated or their systems really needed to be rebuilt from scratch.
The stolen value is negligible compared to 9k machines

[dkbit98]

As the title says General Bytes (largest BATM manufacturer in the world with more than 9k machines) BATMs were hacked, and unkown attacker stole 56.28 BTC worth ~$1.5 million.

Hacked?! There is something fishy about this story
If I remember correctly, there was recently another case of another big Bitcon ATM shutting down their service, so I am starting to think all BitcoinATM companies are under attack by gov-agencies and their ''hackers''.
Let's see if General Bytes will come back and reopen their service or it is shut down forever, but other BATM operators need to seriously improve security to avoid this remote attacks.

[DaveF]

This hack and the older one are already being discussed here: https://bitcointalk.org/index.php?topic=5410704

...Let's see if General Bytes will come back and reopen their service or it is shut down forever, but other BATM operators need to seriously improve security to avoid this remote attacks....

They more or less said that they will not reopen their service that you as the ATM operator have to operate your own back end.
Which is both good and bad, as I pointed out elsewhere there will probably be a bunch of operators dropping out since they do not want to / do not have the ability to operate their own back end.
OTOH, someone may be able to come in and provide that service for people for a fee while also running their own back end so they can recover some of the costs.

-Dave