Hack against third-party interface
Ahem ...
“Hackers were then in a position to establish a malicious ATM/POS switch in parallel with the existing (legit) system before breaking the connection to the backend/Core Banking System (CBS) and substituting their own counterfeit system in its place.”
What was this ATM/POS switch even doing on the Internet?