New point-of-sale malware distributed by Andromeda botnet
Revision as of 18:03, 17 July 2015 by Eric.freyssinet (talk | contribs) (Created page with "{{Publication |Botnet=GamaPoS, |Vector=Andromeda, |Year=2015 |Date=2015-07-16 |Editor=CIO IDG News |Link=http://www.cio.com/article/2949334/new-pointofsale-malware-distributed...")
(Publication) Google search: [1]
New point-of-sale malware distributed by Andromeda botnet | |
---|---|
Botnet | GamaPoS |
Malware | |
Botnet/malware group | |
Exploit kits | |
Services | |
Feature | |
Distribution vector | Andromeda |
Target | |
Origin | |
Campaign | |
Operation/Working group | |
Vulnerability | |
CCProtocol | |
Date | 2015 / 2015-07-16 |
Editor/Conference | CIO IDG News |
Link | http://www.cio.com/article/2949334/new-pointofsale-malware-distributed-by-andromeda-botnet.html (Archive copy) |
Author | Lucian Constantin |
Type | Blogpost |
Abstract
“ This would explain why the GamaPoS gang has taken a different approach. Instead of directly targeting PoS systems from the Internet they’re going after them from inside the trusted internal networks of companies.
Their attacks start with spam, according to the Trend Micro researchers. They send rogue emails purporting to include PCI DSS (Payment Card Industry Data Security Standard) compliance documents or updates for back office customer service systems from the Oracle Micros PoS suite.
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2015BFR1591, editor = {CIO IDG News}, author = {Lucian Constantin}, title = {New point-of-sale malware distributed by Andromeda botnet}, date = {16}, month = Jul, year = {2015}, howpublished = {\url{http://www.cio.com/article/2949334/new-pointofsale-malware-distributed-by-andromeda-botnet.html}}, }