thePCI Portal

Category: Breach

Malware on POS systems

Did you see the CERT warning about the POS malware named Backoff?  The Ars Technica article is a nice summary of the US CERT piece which is technical. The malware retrieves track data from the memory of systems it is installed on.  Combined with key logging, update capabilities and a low antivirus detection rate, its…

Cheap DLP deployment!

Numaan Huq (Senior Threat Researcher at TrendLabs) recently discovered something interesting on a retail POS network. A commercial Data Leakage Prevention (DLP) product (specifically, Ground Labs’ Card Recon software) was installed. The interesting thing was that the DLP software was NOT installed by the rightful owners of the network, but by the bad guys! Numaan…