fbpx

EZ MSP Blog

EZ MSP has been serving the New York area since 2008, providing IT Support such as technical helpdesk support, computer support and consulting to small and medium-sized businesses.

ALERT: Back Off! New Point-of-Sale Malware Threatens Businesses

b2ap3_thumbnail_point_of_sale_malware_400.jpgIf your business purchases hardware or other supplies from a retailer, or if you are your own point-of-sale, your company might be targeted by a new type of Point-of-Sale malware known as Backoff. The malware is capable of stealing credit card information from unsuspecting victims, and should be a cause for concern for those unprepared to fight against it.

The Backoff family of malware has only recently been discovered, and variations of the malware have been reported back as far as October 2013. These types of malware have been reported to house several capabilities, including:

  • Logging keystrokes, or keeping track of which keys were hit, and in which order.
  • Command and Control communication, which determines the extent to which a hacker can influence a compromised computer.
  • Scraping memory for track data, which allows it to collect data from processes that are currently running (like, say, a credit card scan).
  • Injecting malicious stubs into explorer.exe

The process in which Backoff infects its victims starts when the malicious stub is injected into explorer.exe, which is responsible for repeated attempts to crash the system and forcefully stop processes. Afterward, the malware scrapes the memory of the halted process and collects information concerning what was happening. The malware then keylogs for more information in the event that more data is needed to be entered.

At the time of writing, this malware remains largely undetected by antivirus vendors and software. However, it is safe to assume that antivirus companies will be working on a solution for the near future to detect existing variants of Backoff. To this end, the official security advisory by the United States government suggests that you maintain an up-to-date antivirus software and operating system in order to mitigate the damage it can do to your system.

EZ MSP offers our clients automated patch updates that will keep your operating system and security software up-to-date at all times. Whenever new threats are revealed, we do our best to make sure that your business knows about them. It's always important to be wary of new threats, as one little mistake can lead to an unnecessary fallout or loss of information and data security.

Contact EZ MSP at (914) 595-2250 for more information about how to keep your company's data secure. With a malware like this, it affects not only business owners, but anyone who buys or sells products. A lost credit card is the equivalent of forfeiting your budget. Don't make that mistake. Take advantage of EZ MSP's managed IT services today.

3 Signs Your Business is Stuck in the Not-So-Good ...
Would You Give a Hitchhiking Robot a Ride Cross-Co...

Contact Us

Learn more about what EZ MSP
can do for your business.

EZ MSP
7 Odell Plaza Suite 134
Yonkers, New York 10701

Connect With Us

Facebook logo  Twitter logo  Linkedin logo  RSS feed

Latest Blog

Social media is constantly evolving, and if the big social networks had it their way, it would be the only place people go when they log onto the Internet. Whether you have strong feelings for or against social media, or perhaps you are ind...