FastPOS

FastPOS is a variant of POS malware discovered by Trend Micro researchers in June 2016.^[1] The new POS malware foregrounds on how speed the credit card data is stolen and sent back to the hackers.^[2]^[3]

History

[edit ]

Researchers at Trend Micro have named the new malware variant as TSPY_FASTPOS.SMZTDA.^[4] The malware is used by hackers to target small and mid-sized businesses (SMBs) in many countries like France, Taiwan, Japan, Brazil, Hong Kong and United States.^[5]

Operation

[edit ]

Unlike other POS malware, FastPOS does not store the information locally to send it to the cyber thieves periodically.^[6] The variant POS malware executes the attack on the target through infected websites or through Virtual Network Computing (VNC) or via file sharing service. The stolen data is instantly transferred to the Control and Command Server that is hardcoded by the hacker. The POS malware consists of two components– a keylogger and a RAM scraper.^[7] The logged keystrokes are stored in memory and transmitted to the attacker when the Enter key is pressed and are not stored in a file of the infected system.^[8] The stolen data can be user credentials, payment information which depends on the business procedures.^[9] The RAM scraper is devised to steal only credit card data.^[10] The memory scraper is designed to verify the service code of the credit card to help remove out cards that demands PINS.^[11]

References

[edit ]

^ "Trend Micro discovers FastPOS" . Retrieved 2016年06月01日.
^ "Quick and Easy Credit Card Theft with FastPOS" . Retrieved 2016年06月02日.
^ "FastPOS Malware Breaches and Delivers Credit Card Data Instantly". Archived from the original on 2016年08月05日. Retrieved 2016年06月24日.
^ "FastPOS malware instantly delivers stolen credit card data". 3 June 2016. Retrieved 2016年06月03日.
^ "FastPos uses Speed Exfiltration Technique" . Retrieved 2016年06月03日.
^ "FastPOS Chooses Swift, Tosses Subtle" . Retrieved 2016年06月07日.
^ "New FastPOS malware family has scatter-gun approach to data theft". Archived from the original on 2016年07月01日. Retrieved 2016年06月06日.
^ "FastPOS Malware works on Data Exfiltration Speed". 5 June 2016. Retrieved 2016年06月05日.
^ "Monthly Cyber Threat Briefing" (PDF). Archived from the original (PDF) on 2016年08月10日. Retrieved 2016年06月01日.
^ Zetter, Kim. "How Ram Scrapers Work: The Sneaky Tools Behind the Latest Credit Card Hacks". Wired. Retrieved 2019年08月30日.
^ "FastPOS'speedy delivery of stolen credit card data". 6 June 2016. Retrieved 2016年06月06日.

v
t
e

Hacking in the 2010s

← 2000s

2020s →

Major incidents

2010	Operation Aurora (publication of 2009 events) Australian cyberattacks Operation Olympic Games Operation ShadowNet Operation Payback
2011	Canadian government DigiNotar DNSChanger HBGary Federal Operation AntiSec PlayStation network outage RSA SecurID compromise
2012	LinkedIn hack Stratfor email leak Operation High Roller
2013	South Korea cyberattack Snapchat hack Cyberterrorism attack of June 25 2013 Yahoo! data breach Singapore cyberattacks
2014	Anthem medical data breach Operation Tovar 2014 celebrity nude photo leak 2014 JPMorgan Chase data breach 2014 Sony Pictures hack Russian hacker password theft 2014 Yahoo! data breach
2015	Office of Personnel Management data breach HackingTeam Ashley Madison data breach TalkTalk data breach VTech data breach Ukrainian Power Grid Cyberattack SWIFT banking hack
2016	Bangladesh Bank robbery Hollywood Presbyterian Medical Center ransomware incident Commission on Elections data breach Democratic National Committee cyber attacks Vietnam Airport Hacks DCCC cyber attacks Indian Bank data breaches Surkov leaks Dyn cyberattack Russian interference in the 2016 U.S. elections 2016 Bitfinex hack
2017	SHAttered 2017 Macron e-mail leaks WannaCry ransomware attack Westminster data breach Petya and NotPetya 2017 Ukraine ransomware attacks Equifax data breach Deloitte breach Disqus breach
2018	Trustico Atlanta cyberattack British Airways data breach SingHealth data breach
2019	Sri Lanka cyberattack Baltimore ransomware attack Bulgarian revenue agency hack WhatsApp snooping scandal Jeff Bezos phone hacking incident

Hacktivism

Groups

Individuals

Major vulnerabilities
publicly disclosed

Evercookie (2010)
iSeeYou (2013)
Heartbleed (2014)
Shellshock (2014)
POODLE (2014)
Rootpipe (2014)
Row hammer (2014)
SS7 vulnerabilities (2014)
WinShock (2014)
JASBUG (2015)
Stagefright (2015)
DROWN (2016)
Badlock (2016)
Dirty COW (2016)
Cloudbleed (2017)
Broadcom Wi-Fi (2017)
EternalBlue (2017)
DoublePulsar (2017)
Silent Bob is Silent (2017)
KRACK (2017)
ROCA vulnerability (2017)
BlueBorne (2017)
Meltdown (2018)
Spectre (2018)
EFAIL (2018)
Exactis (2018)
Speculative Store Bypass (2018)
Lazy FP state restore (2018)
TLBleed (2018)
SigSpoof (2018)
Foreshadow (2018)
Dragonblood (2019)
Microarchitectural Data Sampling (2019)
BlueKeep (2019)
Kr00k (2019)

Malware

2010	Bad Rabbit Black Energy 2 Blackshades Coreflood Kelihos Stuxnet
2011	Citadel Andromeda Alureon Duqu Gameover ZeuS Metulji botnet Stars ZeroAccess botnet
2012	Alina Carna Dexter Dridex FBI MoneyPak Flame Grum Mahdi Red October Shamoon
2013	BlackPOS CryptoLocker DarkSeoul Havex
2014	Brambul Black Energy 3 Carbanak Careto DarkHotel Duqu 2.0 Emotet FinFisher Gameover ZeuS Kronos Regin
2015	CenterPOS Hidden Tear Kasidet Rombertik TeslaCrypt Project Sauron
2016	FastPOS Hitler Industroyer Jigsaw KeRanger Locky Necurs MEMZ Mirai Pegasus Petya and NotPetya Philadelphia PunkeyPOS X-Agent
2017	BrickerBot Kirk LogicLocker Rensenware Triton WannaCry Xafecopy
2018	Annabelle Joanap VPNFilter
2019	R2D2 Tiny Banker Titanium

Retrieved from "https://en.wikipedia.org/w/index.php?title=FastPOS&oldid=1358352176"

History

Operation

See also

References