Credit-card-stealing virus 'Backoff' virtually undetectable, Homeland Security warns
The Department of Homeland Security warned retailers about a type of malicious software attacking point-of-sales systems, dubbed “Backoff,” that it said is undetectable by most types of anti-virus software.
The agency released a 10-page advisory about the payment-card-stealing virus on Thursday, saying it has been observed in at least three forensic investigations into breaches of payment systems.
The government has released reports on several types of malicious software that cybercriminals used to steal payment cards after last year's unprecedented breach on Target Corp, which resulted in the theft of about 40 million payment card numbers.
Backoff is a family of point-of-sale malware identified in October and with capabilities that include scraping memory for track data, logging keystrokes and injecting malicious stub into explorer.exe files, DHS said.
It said attackers use publicly available tools to find businesses that use remote desktop applications, then gain access to an administrative account to insert the malware.
The DHS advisory warned that such malware puts the business and consumer at risk, exposing data including names, credit card numbers, email addresses, mailing address and phone numbers.
“These breaches can impact a business' brand and reputation, while consumers' information can be used to make fraudulent purchases or risk compromise of bank accounts,” it said.
Show commenting policy
TribLive commenting policy
- Obama: No credible intelligence about terror plot against US
- Foreign policy expert: Obama administration should create Syria safe areas
- Video of white Chicago patrolman fatally firing on fleeing black youth sparks demonstrations
- Self-driving vehicles closer to getting green light as feds ease stance
- GOP readies next assault on health care law
- House Republicans call for refugee limits in spending bill
- Email address gives FBI lead on record theft of user IDs, passwords
- Newborn left in manger in N.Y. church, police say
- Kentucky Gov. Beshear restores right to vote for thousands of nonviolent felons
- Scandals leave Oklahomans in dark
- Poll: 4 in 10 know someone who has been addicted to prescription painkillers