EconomíaHoy.mx – 6:28 – 23/06/2016
-
is able to expose data from any credit card
PandaLabs, the laboratory malware Panda Security has warned of the emergence of a new version of PunkeyPOS a malware that attacks terminals point of sale (POS) and is capable of exposing data from any credit card.
the company explains that they are investigating a result of having discovered last month may use in more than 200 restaurants in the US, which have brought to the attention of law enforcement authorities of the country so they can take appropriate action.
PunkeyPOS runs on any Windows operating system, although the original idea is to be installed directly TPVs to steal sensitive information, such as account numbers, the contents of the magnetic stripe (tracks) of bank cards, etc.
to carry out theft information, simply install first, a keylogger which is responsible for monitoring keystrokes, while on the other ram-scraper which is responsible for reading memory the processes that are running.
Based on the information captured, the malware will perform a series of checks to determine what is valid and what is not. “From keystrokes, PunkeyPOS only gets information that may appear to be a credit card, ignoring any other memory of -obtenida processes via ram-scraping -. It is mainly interested by tracks1 / 2 . the POS terminals read this information on the magnetic strips of bank cards and can be subsequently used to clone these cards, “explained from the company specialized in cybersecurity company.
once the relevant information is obtained, cybercriminals send it remotely to make duplicates and use that data in digital transactions. PandaLabs explains that have managed to trace this shipment because the server of the hackers was not properly configured, allowing them to access the stolen information and locate the infected TPVs, and even update remotely .
Although vulnerability has been discovered in US restaurants, the company has also identified vulnerabilities in Panama, France, United Kingdom, Romania, Japan or Australia.
Other news
sponsored Content
No comments:
Post a Comment