Harold Mansfield
01-17-2014, 02:37 PM
Looks like it wasn't just Target and Neiman Marcus , nor does it seem to be over.
Reports out today are saying that at least 6 other retailers are being exploited as we speak.
BOSTON, Jan 17 (Reuters) - The cyber security firm IntelCrawler said on Friday it has uncovered at least six ongoing attacks at merchants across the United States whose credit card processing systems are infected with the same type of malicious software used to steal data from some 40 million credit cards at Target Inc.
6 More Stores Attacked By Same Hack As Target: Firm (http://www.huffingtonpost.com/2014/01/17/six-other-stores-are-bein_n_4618414.html?ncid=edlinkusaolp00000009)
More: Target's data breach: No, really. It gets even worse. | ZDNet (http://www.zdnet.com/targets-data-breach-no-really-it-gets-even-worse-7000025309/?s_cid=e589&ttag=e589)
The Target/Neiman Marcus hack alone was 70 million people's information stolen.
According to own sources of IntelCrawler the first infected Point-of-Sales environments by BlackPOS were in Australia, Canada and the US. The first name of the malware was a lyric "Kaptoxa" ("potatoe" - in russian slang), which then was renamed to "DUMP MEMORY GRABBER by Ree[4]" for forums postings, but the title for C&C had string "BlackPOS". During that time, "Ree[4]" ("ree4") has sold more then 40 builds of BlackPOS to cybercriminals from Eastern Europe and other countries, including the owners of underground credit cards shops such as ".rescator", "Track2.name", "Privateservices.biz" and many others.
Full report from IntelCrawler about the virus and info on where it came from is here:
http://intelcrawler.com/about/press08
This is not good.
Reports out today are saying that at least 6 other retailers are being exploited as we speak.
BOSTON, Jan 17 (Reuters) - The cyber security firm IntelCrawler said on Friday it has uncovered at least six ongoing attacks at merchants across the United States whose credit card processing systems are infected with the same type of malicious software used to steal data from some 40 million credit cards at Target Inc.
6 More Stores Attacked By Same Hack As Target: Firm (http://www.huffingtonpost.com/2014/01/17/six-other-stores-are-bein_n_4618414.html?ncid=edlinkusaolp00000009)
More: Target's data breach: No, really. It gets even worse. | ZDNet (http://www.zdnet.com/targets-data-breach-no-really-it-gets-even-worse-7000025309/?s_cid=e589&ttag=e589)
The Target/Neiman Marcus hack alone was 70 million people's information stolen.
According to own sources of IntelCrawler the first infected Point-of-Sales environments by BlackPOS were in Australia, Canada and the US. The first name of the malware was a lyric "Kaptoxa" ("potatoe" - in russian slang), which then was renamed to "DUMP MEMORY GRABBER by Ree[4]" for forums postings, but the title for C&C had string "BlackPOS". During that time, "Ree[4]" ("ree4") has sold more then 40 builds of BlackPOS to cybercriminals from Eastern Europe and other countries, including the owners of underground credit cards shops such as ".rescator", "Track2.name", "Privateservices.biz" and many others.
Full report from IntelCrawler about the virus and info on where it came from is here:
http://intelcrawler.com/about/press08
This is not good.