April 23, 2025 By Pierluigi Paganini
Cybercriminals leverage NFC fraud against ATMs and POS terminals, stealing money from consumers at scale.
Resecurity (USA) investigated multiple incidents identified in Q1 2025, exceeding several million dollars in damages for one of the top Fortune 100 financial institutions in the United States due to NFC fraud. Stopping cybercriminals operating from China presents significant challenges due to geopolitical, technical, and organizational factors.
Cybersecurity experts identified multiple Chinese cybercriminal groups targeting Google and Apple Wallet customers. Their TTPs center on the abuse of contactless payments and the misuse of the NFC technology to conduct fraud. The analysts from Resecurity’s HUNTER unit identified a group on Telegram offering the Z-NFC tool for sale to facilitate fraudulent transactions. Another tool, called King NFC, was previously marketed on the Dark Web as an alternative.