Monday, 8 June 2015

POS System For Malware Masquerades As Nvidia Driver


Researchers have discovered a new malware variant that attacks Oracle POS systems to steal credit card information and disguises itself as a graphics driver from chipmaker Nvidia. It is the MalumPos malware, which has provided the installations of the Oracle MICROS platform.


The POS platform is used especially in the catering industry and retail. Worldwide would have 330,000 customers, most of whom are located in the United States. Once active MalumPoS can just steal other malware cash, credit card information from infected systems. Each time a customer in the store or restaurant settles and gets his credit card through the reader, data stored as the cardholder's name, account information and other data. This data can be used for the cloning of credit cards or fraudulent online purchases.

MalumPoS striking because the malware masquerades as an Nvidia driver called "NVIDIA Display Driv3r". Remarkably, because of Nvidia hardware is usually not an important part of a POS system, say researchers at antivirus company Trend Micro . Since Nvidia is a famous brand would be the malware to users of the system might not notice.

It also supports the malware several POS platforms and regular expressions are used to search card data. In addition, the malware seeks primarily to map data from Visa, MasterCard, American Express, Discover and Diner's Club. How the malware from spreading the virus fighter does not know, but it is known that cash malware can spread via weak passwords and e-mail attachments.

3 comments:

  1. This comment has been removed by a blog administrator.

    ReplyDelete
  2. This comment has been removed by a blog administrator.

    ReplyDelete
  3. This comment has been removed by a blog administrator.

    ReplyDelete