Donate to us via Paypal!
Don't judge the unknown - Grindordie
Thursday, February 25, 2021
Navigation
Home
 Find:
 Information:
Learn
Communicate
Submit
Shop
Challenges
 Exploit:
 Programming:
 Think:
 Track:
 Patch:
 Other:
 Need Help?
Other
Members Online
Total Online: 155
Guests Online: 153
Members Online: 2

Registered Members: 133690
Newest Member: toni000098
Latest Articles

View Thread

HellBound Hackers | Events | General

Author

New POS Malware Family Discovered

RootsBabilonia
Member



Posts: 37
Location: 127.0.0.1/Brasil
Joined: 31.03.10
Rank:
God
Posted on 25-03-15 02:57
Unit 42 has discovered a new Point of Sale (POS) malware family, which includes multiple variants created as early as November 2014. Over the past few weeks we have been analyzing this malware family, which we have dubbed ‘FindPOS’ due to strings consistently found in each variant.
While this malware doesn’t show strong sophistication, the large number of variants shows prevalence similar to families such as Alina and Backoff. It is clear that FindPOS should be considered a strong threat to Microsoft Windows POS vendors, and measures should be taken to ensure protection.
Workflow
The malware in question has the ability to scrape memory for track data, exfiltrate any discovered data via HTTP POST requests, and in some instances log keystrokes. While the malware family uses many common techniques witnessed in previous malware families targeting POS devices, the prevalence and continued development of this malware demonstrates a threat to those running Windows-based point of sale terminals.
The general workflow of the FindPOS malware family can be seen below.

researchcenter.paloaltonetworks.com/wp-content/uploads/2015/03/workflow_pos-500x274.png

http://researchce. . .iscovered/


GAT/GP/GCS/GSS/GE/GH/J d- s++:++ a C++++ ULS*+++ P+ L++ K---
w---(++++) M- PS+++ PE-(--) Y++ PGP t R !tv b++++ h-- r+++ z+++++

"In the councils of government, we must guard against the acquisition of unwarranted influence, whether sought or unsought, by the military-industrial complex. The potential for the disastrous rise of misplaced power exists and will persist"
--Dwight D. Eisenhower

.. ... http://suporteninja.com