Explore the latest news and trends  

Sign up for our weekly security newsletter

Be the first to receive important updates on security


New POS Malware Available for $2,000 in Underground Markets

Computerworld.com reported on 2nd December, 2014 stating that a new type of point-of-sale malware dubbed 'LusyPOS' has been discovered and it is being sold in underground market for $2,000.

The malware (LusyPOS) is quite heavy with 4MB in size as compared to birds of the same feather which can be as small as 17KB (Getmypass PoS).

BlackPos was responsible for last year's breach at Target, a retail giant, which is little more than 250KB in size as compared to Framework PoS with 130KB in size which steals financial info from Home Depot, a retailer and the infamous Backoff with 75KB in size which affected more than 1,000 businesses in US.

It (LusyPOS) works by contaminating point-of-sale systems at retail houses and then "scraping" or collecting the payment-card information as it is stored in the device's RAM before encryption. The information is then transferred to a remote server where the cybercriminals with the malware can access and employ it.

CBTS, Ohio-based security company, highlighted that the ads for LusyPOS have emerged on "carder" websites where information of embezzled payment-card is purchased and sold.

Computerworld.com reported on 2nd December, 2014 quoting a blog of Nick Hoffman, a Reverse Engineer of CBTS, as "LusyPOS shares some features identical to two other renowned POS malware programs, Chewbacca and Dexter."

For example, LusyPOS employs Tor for communication which encrypts data and it is characteristic specific to Chewbacca. The strings found during the reverse engineering process were found to be similar to those found in Dexter.

Tor short for The Onion Router is a software solution which is designed to make Web traffic of people more unidentified by encrypting and routing it via a network of servers worldwide.

Goodgearguide.com.au published a report quoting Brian Minick, Vice President of CBTS as saying "Lately, LusyPOS was only identified by seven applications and out of these two applications flagged LusyPOS for its employment of a Tor package."

Tomsguide.com published news on 2nd December, 2014 quoting a conclusion of Hoffman as "This is only a scratch in the surface of a fresh malware family. We will be anxious to see it progress over the few years and track down its progress."

» SPAMfighter News - 12/11/2014

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page