Police Arrest Two Suspects in NFC-based ATM Fraud Case

On July 18, media reports confirmed that police in Jiujiang, Jiangxi Province, had successfully cracked a case involving the remote theft of funds using mobile phones to simulate bank card data. The investigation began after authorities received a tip-off about suspicious withdrawals and fund transfers at a bank branch in Chaisang District.

Upon investigation, officers discovered that the suspects weren’t using physical bank cards at all. Instead, they operated with two mobile phones—one for control and the other attached to the ATM screen. The screen displayed lines of code, leading officers to suspect the use of Near Field Communication (NFC) technology to conduct cardless withdrawals.

NFC is a short-range wireless communication technology based on radio frequency identification, commonly used for mobile payments and public transit. It was originally designed to allow users to withdraw money by simply tapping a phone linked to their own bank card against an ATM. However, in this case, the suspects used a modified phone embedded with malicious software to simulate stolen card data.

The police quickly identified and apprehended two suspects, surnamed Lü and Liu, in Gongqingcheng, Jiujiang. At the scene, officers confiscated three mobile phones and 35,000 yuan in illicit cash. Investigations revealed that both suspects acted under the direction of an accomplice abroad, who sent them stolen card numbers and PINs through overseas messaging apps. Using malware, the phones were turned into digital clones of the cards, allowing withdrawals at ATMs. The suspects would then deliver the cash to locations designated by their handler, earning a commission in the process.

The stolen bank information was reportedly obtained by their handler through infected POS terminals or unsecured environments, such as unregulated microloan platforms, in regions like Jiangsu, Shanghai, and Guangdong. Victims’ data was silently captured as they swiped their cards or entered passwords, unaware of the breach.

From May 27 to June 4, 2025, the two suspects illegally withdrew over 800,000 yuan across several districts in Jiujiang. Further investigations are ongoing.

The police urge the public to take extra precautions to protect their bank card information. When using ATMs or POS machines, ensure the environment is secure, shield your password entry, and avoid using financial services from unverified sources. Preventing data leaks is key to safeguarding your assets.