Fresh POS Malware seemingly within Beta-testing Stage; Trend Micro

Trend Micro the security company, of late, detected one fresh POS (point-of-sale) malware which it named TSPY_POSLOGR.K, but according to the firm, the malware is still undergoing progression, published scmagazine.com in news on December 1, 2014.

Global Threat Communications Manager Christopher Budd with Trend Micro states that the malware has debug information while it lacks the ability to command-and-control. This therefore makes the security experts consider TSPY_POSLOGR.K as undergoing beta testing stage, he adds. SCMagazine.com published this.

Budd continues that typical of any software, it is difficult to recognize a concluded 'beta' test so production becomes ready for performing. With the current POS malware, it lacking the command-and-control elements, for the minimum, most importantly indicates that it is one production malware strain, Budd analyzes.

One configuration file labeled with the extension .INI for the malware specifies the processes it requires targeting. But this configuration file is not spotted on any contaminated PC; therefore, nobody can tell for certain the processes the malicious software would search. There is also one variable in this configuration file which instructs at what time-gap the processes should be re-scanned.

The Poslogr seems as multi-component malicious software; as a result, experts think the component, which facilitates dumped data to be transferred, gets provided in the form of a package.

The threat, as per Trend Micro, gets disseminated through drive-by downloads as well as by taking other malware's help.

Recently, IntelCrawler a threat intelligence firm's security researchers informed about finding one fresh POS malware which attacks e-kiosks. Known as "d4re|dev1|," the POS program was detected on nearly 80 computer systems within Australia, United States of America and European Union.

Moreover, considering the successes POS malware has gained over time, it is little astonishing that this threat has been increasingly developed. When a POS malware called BlackPOS attacked Target an American retailer, cyber-criminals stole over 40m payment card records.

Significantly, experts at Trend Micro state that it'll keep monitoring the Poslogr to get more updates. Meanwhile, Web-surfers could remain secured while shopping online if they loaded quality and up-to-date anti-spyware security programs onto their computers, the experts eventually stated.

» SPAMfighter News - 12/5/2014