Seva
03-16-2017, 08:34 AM
The experts at Trend Micro warned of a new variant of the malicious software for PoS-terminals MajikPOS. The malware detected by the company's products as TSPY_MAJIKPOS.A, attacking the commercial organization in the United States and Canada.
According to researchers, cybercriminals use MajikPOS from 28 January 2017. Like other malware of this kind MajikPOS designed to steal data, but differs from them in a modular structure. FastPOS (updated version), Gorynych and ModPOS also consist of several components that perform different functions. However, MajikPOS uses modules differently. The Trojan downloads from the server an optional component that is needed to read data from RAM.
In the attacks MajikPOS operators use a combination of malware and a Trojan for remote access (RAT). Point of entry for attackers are the services that use protocols **C and RDP and protected by weak passwords.
The stolen data hackers sell on majoring in a website in the so-called store GREENDUMPS24.COM. The value of the stolen data ranges from $9 to $39 per card.
According to researchers, cybercriminals use MajikPOS from 28 January 2017. Like other malware of this kind MajikPOS designed to steal data, but differs from them in a modular structure. FastPOS (updated version), Gorynych and ModPOS also consist of several components that perform different functions. However, MajikPOS uses modules differently. The Trojan downloads from the server an optional component that is needed to read data from RAM.
In the attacks MajikPOS operators use a combination of malware and a Trojan for remote access (RAT). Point of entry for attackers are the services that use protocols **C and RDP and protected by weak passwords.
The stolen data hackers sell on majoring in a website in the so-called store GREENDUMPS24.COM. The value of the stolen data ranges from $9 to $39 per card.