Several news sent by The SANS Institute in which the latest was dated on March 22, 2013, makes me to a rough conclusion. It is that nowadays the criminals on hacking bank system prefer to play trojan horse as the tools. It means that the bank's security people must be aware on this and warn other staff of the bank about this. The news of The SANS Institute below shows it.
The vSkimmer Trojan horse program steals payment card data from point-of-sale (POS) terminals. The malware has the capacity to steal the data from cards' magnetic strip, which contains account numbers, expiration dates, and security codes; it is being used in targeted attacks. vSkimmer targets Windows machines and sends the data it steals to a remote server. vSkimmer does not work on cards that use the EMV, also known as chip-and-pin authentication standard. HTtp://www.scmagazine.com/vskimmer-trojan-steals-card-data-on-point-of-sale-systems/article/285725/http://www.computerworld.com/s/article/9237828/Researchers_uncover_vSkimmer_malware_ targeting_point_of_sale_systems?taxonomyId=17