FighterPOS: a new one-man PoS malware campaign

From Botnets.fr
Revision as of 04:31, 22 August 2015 by Eric.freyssinet (talk | contribs)
Jump to navigation Jump to search

(Publication) Google search: [1]

FighterPOS: a new one-man PoS malware campaign
Botnet FighterPOS
Malware
Botnet/malware group Point-of-sale
Exploit kits
Services
Feature
Distribution vector
Target
Origin
Campaign
Operation/Working group
Vulnerability
CCProtocol
Date 2015 / 2015-04-10
Editor/Conference Trend Micro
Link http://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/fighterpos-one-man-pos-malware-campaign (Archive copy)
Author
Type Tech report

Abstract

This research paper offers a look into a one-man PoS malware campaign run by a prolific cybercriminal, “AlejandroV”. According to collected data, his PoS malware, dubbed “FighterPOS,” has hit 200 organizations across Brazil, Mexico, Italy, and the UK since early 2014 and has managed to scrape 22,000 credit card numbers within a month. AlejandroV does not only run his own campaign, but also sells FighterPOS to other cybercriminals in the underground forums. This “career change” seems surprising since our investigation has revealed that AlejandroV has a long history of carding and payment scams, taking both the role of malware developer and seller.

Bibtex

 @misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2015BFR4754,
   editor = {Trend Micro},
   author = {},
   title = {FighterPOS: a new one-man PoS malware campaign},
   date = {10},
   month = Apr,
   year = {2015},
   howpublished = {\url{http://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/fighterpos-one-man-pos-malware-campaign}},
 }