Researchers find large global botnet of infected PoS systems

Discussion in 'malware problems & news' started by ronjor, May 23, 2014.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,740
    Location:
    Texas
  2. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,943
    Location:
    California
    From other articles:

    http://securityaffairs.co/wordpress/25146/cyber-crime/nemanja-botnet-poss.html
    Attacks are no longer limited to physical access compromises (card swiping contraptions, etc.).

    One Drive-by-download scenario is that an employee in the back office is enticed to visit a compromised web site, or open an infected document, after which the malware with PoS exploits is installed (assuming AV or other security doesn't alert to the attack).

    http://www.scmagazine.com/nemanja-p...paign=Feed: SCMagazineNews (SC Magazine News)
    ----
    rich
     
    Last edited: May 23, 2014
  3. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,740
    Location:
    Texas
    Thanks for the additional info Rich.
     
  4. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,943
    Location:
    California
    You are welcome, Ron.

    Are you becoming hesitant about using a card for payment in your local shopping?

    ----
    rich
     
  5. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,740
    Location:
    Texas
    Credit card is still better than cash. They pick up the tab in the event of breaches.

    That should spur more security in the long run.
     
  6. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,943
    Location:
    California
    I agree about picking up the tab.

    However, more of a concern to me is that personal identifiable data can be used in identity theft.

    From the securityaffairs.co article:


    ----
    rich
     
  7. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,943
    Location:
    California
    Why? Because of potentially being robbed when carrying cash?


    ----
    rich
     
  8. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,740
    Location:
    Texas
    That is a major concern, agreed.
     
  9. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,740
    Location:
    Texas
    Convenience is the key. Very few people buy a car using cash for instance. And if you do, there will be questions from the dealership.
     
  10. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,943
    Location:
    California
    Convenience, Yes!

    But How about a check? Or a bank draft? (Although, in my area, many businesses no longer accept checks.)

    The reason I pursue this is that I have concerns about the safety of my personal information stored in data bases.

    A few years ago, Amazon was pushing its own credit card. There are a number of perks for using its card, but when asked to give my SSN, I declined. I didn't want that information in another online database.

    I began to be concerned following the massive TJX data breach:

    http://www.computerworld.com/s/arti...h_At_45.6M_card_numbers_it_s_the_biggest_ever
    After the Target fiasco, I decided to use cash for local purchases. I don't know how long this will last, but so far it's working OK.

    I've never had any concerns about my own computer being compromised, but when my personal information is stored in places where I have no control, then, I become concerned.

    ----
    rich
     
  11. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,833
    Originally Posted by Rmus

    In total agreement. Cash is king :thumb:
     
  12. siljaline

    siljaline Former Poster

    Joined:
    Jun 29, 2003
    Posts:
    6,619
    Point-of-Sale Dealers Need a Security Sit-Down
    http://threatpost.com/point-of-sale-dealers-need-a-security-sit-down/107321
     
Loading...
Thread Status:
Not open for further replies.