Your forum username:
Do you already have an account?
Forgot your password?
  • Log in or Sign up


    Welcome to Sky User - The Unofficial Support Forum for everything Sky! - Proudly helping over 65k members.


    Advertisement

    Results 1 to 9 of 9
    Like Tree4Likes
    • 1 Post By coipu
    • 1 Post By coipu
    • 1 Post By marjohn56
    • 1 Post By Isitme

    More POS malware, just in time for Christmas

    This is a discussion on More POS malware, just in time for Christmas within the Everyday Life forums, part of the Community channel category; More POS malware, just in time for Christmas VXers stuff evidence-purging malware in retailer stockings. Threat researchers are warning of ...

    1. #1
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Q Hub ER110
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,060
      Thanks
      827
      Thanked 2,204 Times in 2,074 Posts

      More POS malware, just in time for Christmas

      More POS malware, just in time for Christmas
      VXers stuff evidence-purging malware in retailer stockings.


      Threat researchers are warning of two pieces of point of sales malware that have gone largely undetected during years of retail wrecking and now appear likely to earn VXers a haul over the coming festive break.

      The Cherry Picker and AbaddonPOS malware, exposed in the last week, are the latest evolution in stealthy and capable point of sales credit and debit card plundering.

      Cherry Picker has been targeting retail businesses since 2011 and now sports new anti-analysis tricks, persistence mechanisms, and better card ripping functionality.

      Trustwave researcher Eric Merritt says the malware is expert at wiping evidence of itself after an attack has occurred, overwriting files multiple times and removing data exfiltration locations.

      The memory-scraping malware runs on Windows platforms including Windows 7 and the hard-to-kill XP, running remote administration services.
      It targets retailers in the food industry running any POS software.

      Proofpoint's contribution to the bad news was its description of the Abaddon point of sales malware, which also sports anti-analysis, obfuscation, and wiping tricks.

      The researchers found Abbadon on seven client networks that had been delivered after a Vawtrak infection.

      "On October 8, Proofpoint researchers observed Vawtrak downloading TinyLoader which then downloaded AbaddonPOS," the researchers say.

      "The practice of threat actors to increase their target surfaces by leveraging a single campaign to deliver multiple payloads is by now a well-established practice," the researchers say.

      "While using this technique to deliver point of sale malware is less common, the approach of the US holiday shopping season gives cybercriminals ample reason to maximise the return on their campaigns."

      PoS malware will be further challenged as the United States deploys EMV credit card technology, notably when crucial PIN features are used in place of antiquated signatures.


    2. Advertisement
    3. #2
      marjohn56's Avatar
      marjohn56 is offline Sky User Member
      Exchange: Cricklewood
      Broadband ISP: ZEN
      Router: Billion 8800NL(Modem Bridge) + OPNsense 19.7.b
      Sky TV: Sky Q 2Tb+Mini
      Join Date
      Dec 2011
      Posts
      1,806
      Thanks
      13
      Thanked 141 Times in 132 Posts

      Re: More POS malware, just in time for Christmas

      It's about time the US started using PIN technology.

      I quite like the contactless tech, although I have invested in a wallet that has shields in it so I have to take the card out of the wallet to use it.
      --------------------------------------------------------
      Artificial Intelligence is no match for Natural Stupidity.
      --------------------------------------------------------

    4. #3
      coipu's Avatar
      coipu is offline Sky User Member
      Exchange: EADER or is it?
      Broadband ISP: Sky Fibre Unlimited
      Router: Lede on ECI Modem/pFsense
      Sky TV: Cord Cut
      Join Date
      Dec 2012
      Location
      Wherever I lay my VPN
      Posts
      518
      Thanks
      31
      Thanked 38 Times in 36 Posts

      Re: More POS malware, just in time for Christmas

      Yeah I gotta safe wallet too More POS malware, just in time for Christmas-index.jpg
      Scubbie likes this.

    5. #4
      marjohn56's Avatar
      marjohn56 is offline Sky User Member
      Exchange: Cricklewood
      Broadband ISP: ZEN
      Router: Billion 8800NL(Modem Bridge) + OPNsense 19.7.b
      Sky TV: Sky Q 2Tb+Mini
      Join Date
      Dec 2011
      Posts
      1,806
      Thanks
      13
      Thanked 141 Times in 132 Posts

      Re: More POS malware, just in time for Christmas

      Yes, that would work too...

      Personally, I prefer not to have bits of tin foil falling from my wallet when I open it. There's enough junk, receipts etc, in there already!
      --------------------------------------------------------
      Artificial Intelligence is no match for Natural Stupidity.
      --------------------------------------------------------

    6. #5
      coipu's Avatar
      coipu is offline Sky User Member
      Exchange: EADER or is it?
      Broadband ISP: Sky Fibre Unlimited
      Router: Lede on ECI Modem/pFsense
      Sky TV: Cord Cut
      Join Date
      Dec 2012
      Location
      Wherever I lay my VPN
      Posts
      518
      Thanks
      31
      Thanked 38 Times in 36 Posts

      Re: More POS malware, just in time for Christmas

      Foil is awesome, with some duct tape and wd40 all of life's problems are sorted.

      Sent from my Nexus 6P using Tapatalk
      jrfer likes this.

    7. #6
      marjohn56's Avatar
      marjohn56 is offline Sky User Member
      Exchange: Cricklewood
      Broadband ISP: ZEN
      Router: Billion 8800NL(Modem Bridge) + OPNsense 19.7.b
      Sky TV: Sky Q 2Tb+Mini
      Join Date
      Dec 2011
      Posts
      1,806
      Thanks
      13
      Thanked 141 Times in 132 Posts

      Re: More POS malware, just in time for Christmas

      You forgot the string.... very useful.

      Desert Island survival pack.... now there's a topic for an interesting thread.
      jrfer likes this.
      --------------------------------------------------------
      Artificial Intelligence is no match for Natural Stupidity.
      --------------------------------------------------------

    8. #7
      marjohn56's Avatar
      marjohn56 is offline Sky User Member
      Exchange: Cricklewood
      Broadband ISP: ZEN
      Router: Billion 8800NL(Modem Bridge) + OPNsense 19.7.b
      Sky TV: Sky Q 2Tb+Mini
      Join Date
      Dec 2011
      Posts
      1,806
      Thanks
      13
      Thanked 141 Times in 132 Posts

      Re: More POS malware, just in time for Christmas

      Quote Originally Posted by coipu View Post
      Foil is awesome, with some duct tape and wd40 all of life's problems are sorted.
      Seems like the BBC agree with you...

      Tips to boost your wi-fi connection - BBC News
      --------------------------------------------------------
      Artificial Intelligence is no match for Natural Stupidity.
      --------------------------------------------------------

    9. #8
      Isitme's Avatar
      Isitme is offline Sky User Moderator
      Exchange: Bannockburn
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Hub SR102
      Sky TV: Sky+ HD
      Join Date
      Dec 2006
      Location
      Central Scotland
      Posts
      34,256
      Thanks
      65
      Thanked 1,655 Times in 1,616 Posts

      Re: More POS malware, just in time for Christmas

      Quote Originally Posted by marjohn56 View Post
      Seems like the BBC agree with you...

      Tips to boost your wi-fi connection - BBC News
      Nobody told her the Sky router is not designed to be used lying flat
      Scubbie likes this.

      TomD


      Please note the views and recommendations in my posts are my own and in no way reflect the views of SkyUser.


      Useful Utilites

      http://www.nirsoft.net/utils/wifi_information_view.html/ TCPOptimiser /Test Socket

      Note - When downloading always select the Custom install or you will end up with stuff you don't want.





    10. #9
      marjohn56's Avatar
      marjohn56 is offline Sky User Member
      Exchange: Cricklewood
      Broadband ISP: ZEN
      Router: Billion 8800NL(Modem Bridge) + OPNsense 19.7.b
      Sky TV: Sky Q 2Tb+Mini
      Join Date
      Dec 2011
      Posts
      1,806
      Thanks
      13
      Thanked 141 Times in 132 Posts

      Re: More POS malware, just in time for Christmas

      Nobody told her not to use a Sky router full stop.
      --------------------------------------------------------
      Artificial Intelligence is no match for Natural Stupidity.
      --------------------------------------------------------

     

     

    Tags for this Thread

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •  
    SkyUser - Copyright © 2006-2017. SatDish and NewsreadeR | SkyUser is in no way affiliated with Sky Broadband / BSkyB
    RIPA NOTICE: NO CONSENT IS GIVEN FOR INTERCEPTION OF PAGE TRANSMISSION